| 1 |
Markus Bartl wrote: |
| 2 |
> Hi there. |
| 3 |
> |
| 4 |
> Ive got my SELinux kernel up and running. |
| 5 |
> What im wondering about is that i can restart services without changing |
| 6 |
> to the sysadm_r role. |
| 7 |
|
| 8 |
Are you prompted for the root password when you execute one |
| 9 |
of the init.d scripts? And are you in permissive mode or |
| 10 |
enforcing mode? |
| 11 |
|
| 12 |
In general, a *lot* of strange problems with SELinux are |
| 13 |
caused by mislabeled file systems. If certain executables |
| 14 |
aren't labeled correctly, even in permissive mode, it will |
| 15 |
prevent the correct transitions from happening and produce |
| 16 |
odd symptoms later on. One common symptom of this is the rc |
| 17 |
system not cooperating with SELinux. |
| 18 |
|
| 19 |
I would suggest you relabel everything: rlpkg -a -r |
| 20 |
then reboot and see if your behavior is more what you expected. |
| 21 |
|
| 22 |
--K |
Archives