Gentoo Archives: gentoo-hardened

From: Randy Tupas <rjtupas@×××××××.com>
To: gentoo-hardened@l.g.o
Subject: [gentoo-hardened] Mislabeled root home directory
Date: Sat, 02 Aug 2008 02:35:53
Message-Id: BAY101-W48815B19D3C33EA465AAE7B47E0@phx.gbl
1 Hello,
2
3 I recently updated to the 20080525 selinux base policy and modules. I've received the following avc messages:
4
5 Aug 01 18:53:22 tux (null): avc: denied pid=8004 comm=ssmtp name=root ino=87746 dev=sdb3 scontext=system_u:system_r:system_mail_t tcontext=system_u:object_r:default_t tclass=dir
6
7 A little searching revealed that the root home directory, /root, has the following context:
8
9 system_u:object_r:default_t
10
11 I'm sure this is in error - but wanted to make sure. I believe the problem lies with the following line in /etc/selinux/targeted/context/files/file_contexts:
12
13 /root/\.default_contexts -- system_u:object_r:default_context_t
14
15 What is the recommended course of action.
16
17 TIA,
18
19 Randy
20 _________________________________________________________________
21 With Windows Live for mobile, your contacts travel with you.
22 http://www.windowslive.com/mobile/overview.html?ocid=TXT_TAGLM_WL_mobile_072008

Replies

Subject Author
Re: [gentoo-hardened] Mislabeled root home directory Chris PeBenito <pebenito@g.o>