1 |
For those interested in not using the initrd for doing the initial |
2 |
SELinux policy load, its now possible. For those who still want to |
3 |
continue to use the initrd, you can simply ignore this email. |
4 |
/sbin/seinit will load the policy, and then exec the real init |
5 |
(/sbin/init). No more forgetting to regenerate the initrd :) . If you |
6 |
choose to not use the initrd anymore, you can also unmerge mkinitrd. |
7 |
|
8 |
Instructions: |
9 |
1. make sure you have policycoreutils-1.2-r2 (/sbin/seinit should exist) |
10 |
2. remove the initrd line from your bootloader, and add |
11 |
init=/sbin/seinit to the kernel command line. |
12 |
|
13 |
GRUB Example: |
14 |
|
15 |
title=linux |
16 |
root (hd0,0) |
17 |
kernel /bzImage root=/dev/hda3 init=/sbin/seinit gentoo=nodevfs |
18 |
|
19 |
|
20 |
LILO Example: |
21 |
|
22 |
image=/boot/bzImage |
23 |
label=linux |
24 |
read-only |
25 |
root=/dev/hda3 |
26 |
append="init=/sbin/seinit gentoo=nodevfs" |
27 |
|
28 |
|
29 |
-- |
30 |
Chris PeBenito |
31 |
<pebenito@g.o> |
32 |
Developer, |
33 |
Hardened Gentoo Linux |
34 |
Embedded Gentoo Linux |
35 |
|
36 |
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 |
37 |
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 |