1 |
On Fri, Sep 22, 2006 at 04:10:47PM +0200, stanke wrote: |
2 |
> Hello all |
3 |
> |
4 |
> I want to ask you for help. |
5 |
> |
6 |
> I have problem with my selinux gentoo. The cron isn't function. 18:20:36 |
7 |
> gentoo64 syslog-ng[14808]: STATS: dropped |
8 |
> 0 |
9 |
> |
10 |
> |
11 |
> I google it and I fount, that it's problem with permission. When I tried |
12 |
> to login to my system that su - to root, there was no problem and I'm in |
13 |
> these groups |
14 |
> uid=0(root) gid=0(root) |
15 |
> groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel),11(floppy),16(cron),20(dialout),26(tape),27(video) |
16 |
> context=user_u:user_r:user_t |
17 |
> but if I tried to newrole -r sysadm_r it's not working |
18 |
> newrole -r sysadm_r |
19 |
> Authenticating root. |
20 |
> Password: |
21 |
> user_u:sysadm_r:sysadm_t is not a valid context |
22 |
The policy does not allow a role transition from user_r to sysadm_r. |
23 |
So thats why su can't work. |
24 |
> |
25 |
> |
26 |
> But if I logon to my system with keyboard console and direct to root, |
27 |
> the system is asking me if I want to choose different selinux profile |
28 |
> and i'm able to switch to sysadm_r role. |
29 |
Here the source role for the transition is different, login can |
30 |
transition to user_r, as well as sysadm_r. |
31 |
|
32 |
> |
33 |
> So please can someone help me with cron and with the selinux roles. |
34 |
|
35 |
Sorry, don't know how to fix the cron thing... |
36 |
> |
37 |
> Thank you |