social.wildeboer.net is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon instance for people with Wildeboer as their last name

Server stats:

2
active users

#stop

0 posts0 participants0 posts today
Replied in thread

Is This Any Way to #Stop #Fascism?

You might not care if #ConvictedFelon #DonaldTrump says #Muslims must #register with their #government because you’re not one. And you might not care if Trump says he’s going to #roundup all the #Hispanic #immigrants, because you’re not one … if he keeps going and he actually becomes #president, he might just get around to you. And you better hope there’s someone left to help you.

counterpunch.org/2024/10/28/is

CounterPunch.org · Is This Any Way to Stop Fascism?If Vice President Kamala Harris was hoping the New York Times’ interview with John Kelly, Trump’s former Chief of Staff and retired Marine Corps General,

#SELinux is driving me insane today!

On my containerized Gitlab server, I have SSL-Certificates at /opt/gitlab/config/data/ssl

ipa-getcert will only place the TLS certificates in there, if the directory context is cert_t

But if I set it to cert_t, then the containerized Gitlab can't access it anymore. For that to work, I must reset it to container_file_t

sealert doesn't give a good solution, so I ended up with a very bad and not elegant solution:

#Stop Gitlab
- podman stop gitlab

#Change context to cert_t
- chcon -R -t cert_t /opt/gitlab/config/data/ssl

#Get certificate
- ipa-getcert request -f /opt/gitlab/config/ssl/gitlab.crt -k /opt/gitlab/config/ssl/gitlab.key

#Set context to container_file_t
- chcon -R -t container_file_t /opt/gitlab/config/data/ssl

#Start Gitlab
- podman start gitlab

That is a very bad solution but currently the best, I could come up with :facepalm:

Does anyone got an idea/hint about this?