 |
I know that "any update"? comments aren't particularly useful, but... any update? Is there someone in particular we can talk to about it? |
|
|
Hola David, I didn't see this come through. Usually Asterisk stuff catches my eye. Nice to see you over here. Anyways, I did a bit of research. It looks like the policy modules are now in an epel package. If you have `epel-release` installed, you can: `dnf install selinux-policy-epel-targeted` The directory is here: `/var/lib/selinux/targeted/active/modules/200/asterisk` You can confirm that it is loaded: `semodule -l | grep asterisk` Hope that helps! |
|
|
Thanks for your help Michael, however I can't see selinux-policy-epel-targeted. The output is as follows. Am I doing something wrong? [root@dev-rocky-10 ~]# dnf list epel-release Last metadata expiration check: 0:47:47 ago on Fri 24 Oct 2025 13:59:00. Installed Packages epel-release.noarch 10-6.el10_0 @extras [root@dev-rocky-10 ~]# dnf install selinux-policy-epel-targeted Last metadata expiration check: 0:47:51 ago on Fri 24 Oct 2025 13:59:00. No match for argument: selinux-policy-epel-targeted Error: Unable to find a match: selinux-policy-epel-targeted |
|
|
Hmm. That is odd. Here is a screenshot on a clean Rocky 10 VM. Maybe try doing a `dnf clean all` or add `--refresh` flag to the dnf command? Something like ` dnf install selinux-policy-epel-targeted --refresh`. Just some ideas. image-2.png (100,233 bytes) image.png (83,139 bytes) |
|
|
Weird, still nothing. I wonder what I'm doing wrong? [root@dev-rocky-10 ~]# dnf clean all 45 files removed [root@dev-rocky-10 ~]# dnf install selinux-policy-epel-targeted --refresh Node.js Packages for Linux RPM based distros - x86_64 13 kB/s | 5.7 kB 00:00 Extra Packages for Enterprise Linux 10 - x86_64 2.8 MB/s | 5.7 MB 00:02 Rocky Linux 10 - BaseOS 31 MB/s | 21 MB 00:00 Rocky Linux 10 - AppStream 3.2 MB/s | 2.2 MB 00:00 Rocky Linux 10 - CRB 843 kB/s | 527 kB 00:00 Rocky Linux 10 - Extras 7.5 kB/s | 5.4 kB 00:00 RPM Fusion for EL 10 - Free - Updates 38 kB/s | 47 kB 00:01 No match for argument: selinux-policy-epel-targeted Error: Unable to find a match: selinux-policy-epel-targeted [root@dev-rocky-10 ~]# cat /etc/redhat-release Rocky Linux release 10.0 (Red Quartz) |
|
|
What does your `/etc/yum.repos.d/epel.repo` file look like? [epel] name=Extra Packages for Enterprise Linux $releasever - $basearch # It is much more secure to use the metalink, but if you wish to use a local mirror # place its address here. #baseurl=https://download.example/pub/epel/$releasever${releasever_minor:+z}/Everything/$basearch/ metalink=https://mirrors.fedoraproject.org/metalink?repo=epel${releasever_minor:+-z}-$releasever&arch=$basearch gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-$releasever_major gpgcheck=1 repo_gpgcheck=0 metadata_expire=24h countme=1 enabled=1 |
|
|
It's the same but with other packages: [root@dev-rocky-10 ~]# cat /etc/yum.repos.d/epel.repo [epel] name=Extra Packages for Enterprise Linux $releasever - $basearch # It is much more secure to use the metalink, but if you wish to use a local mirror # place its address here. #baseurl=https://download.example/pub/epel/$releasever${releasever_minor:+z}/Everything/$basearch/ metalink=https://mirrors.fedoraproject.org/metalink?repo=epel${releasever_minor:+-z}-$releasever&arch=$basearch gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-$releasever_major gpgcheck=1 repo_gpgcheck=0 metadata_expire=24h countme=1 enabled=1 [epel-debuginfo] name=Extra Packages for Enterprise Linux $releasever - $basearch - Debug # It is much more secure to use the metalink, but if you wish to use a local mirror # place its address here. #baseurl=https://download.example/pub/epel/$releasever${releasever_minor:+z}/Everything/$basearch/debug/ metalink=https://mirrors.fedoraproject.org/metalink?repo=epel${releasever_minor:+-z}-debug-$releasever&arch=$basearch gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-$releasever_major gpgcheck=1 repo_gpgcheck=0 metadata_expire=24h enabled=0 [epel-source] name=Extra Packages for Enterprise Linux $releasever - $basearch - Source # It is much more secure to use the metalink, but if you wish to use a local mirror # place its address here. #baseurl=https://download.example/pub/epel/$releasever${releasever_minor:+z}/Everything/source/tree/ metalink=https://mirrors.fedoraproject.org/metalink?repo=epel${releasever_minor:+-z}-source-$releasever&arch=source gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-$releasever_major gpgcheck=1 repo_gpgcheck=0 metadata_expire=24h enabled=0 |
|
|
I am at a loss. The only other possibility is that you are hitting a mirror that is not in sync, perhaps. |
- Anonymous
