| 1 |
Hi: |
| 2 |
|
| 3 |
I try to make my system selinux enabled and followed the steps from |
| 4 |
http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml?part=2&chap=1, |
| 5 |
but I'm unable to mount /selinux? |
| 6 |
|
| 7 |
> cat /etc/fstab |
| 8 |
> # /etc/fstab: static file system information. |
| 9 |
> # |
| 10 |
> # noatime turns off atimes for increased performance (atimes normally |
| 11 |
> aren't |
| 12 |
> # needed); notail increases performance of ReiserFS (at the expense of |
| 13 |
> storage |
| 14 |
> # efficiency). It's safe to drop the noatime options if you want and to |
| 15 |
> # switch between notail / tail freely. |
| 16 |
> # |
| 17 |
> # The root filesystem should have a pass number of either 0 or 1. |
| 18 |
> # All other filesystems should have a pass number of 0 or greater than 1. |
| 19 |
> # |
| 20 |
> # See the manpage fstab(5) for more information. |
| 21 |
> # |
| 22 |
> |
| 23 |
> # <fs> <mountpoint> <type> |
| 24 |
> <opts> <dump/pass> |
| 25 |
> |
| 26 |
> # NOTE: If your BOOT partition is ReiserFS, add the notail option to opts. |
| 27 |
> /dev/hda1 /boot ext3 |
| 28 |
> defaults,noauto,noatime 1 2 |
| 29 |
> /dev/hda3 / ext4 |
| 30 |
> noatime 0 1 |
| 31 |
> /dev/hda2 none swap |
| 32 |
> sw 0 0 |
| 33 |
> /dev/cdrom /mnt/cdrom auto |
| 34 |
> noauto,ro 0 0 |
| 35 |
> /dev/fd0 /mnt/floppy auto |
| 36 |
> noauto 0 0 |
| 37 |
> |
| 38 |
> proc /proc proc |
| 39 |
> defaults 0 0 |
| 40 |
> shm /dev/shm tmpfs |
| 41 |
> nodev,nosuid,noexec 0 0 |
| 42 |
> |
| 43 |
> # For a "targeted" or "strict" policy type: |
| 44 |
> tmpfs /tmp tmpfs |
| 45 |
> defaults,noexec,nosuid,rootcontext=system_u:object_r:tmp_t 0 0 |
| 46 |
> |
| 47 |
> # The udev mount is due to bug #373381 |
| 48 |
> udev /dev tmpfs |
| 49 |
> rw,rootcontext=system_u:object_r:device_t,seclabel,nosuid,relatime,size=10m,mode=755 |
| 50 |
> 0 0 |
| 51 |
> none /selinux selinuxfs defaults 0 0 |
| 52 |
|
| 53 |
> mount |
| 54 |
> rootfs on / type rootfs (rw) |
| 55 |
> /dev/root on / type ext4 |
| 56 |
> (rw,noatime,user_xattr,acl,barrier=1,data=ordered) |
| 57 |
> devtmpfs on /dev type devtmpfs |
| 58 |
> (rw,relatime,size=92980k,nr_inodes=23245,mode=755) |
| 59 |
> proc on /proc type proc (rw,relatime) |
| 60 |
> rc-svcdir on /lib/rc/init.d type tmpfs |
| 61 |
> (rw,nosuid,nodev,noexec,relatime,size=1024k,mode=755) |
| 62 |
> sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime) |
| 63 |
> securityfs on /sys/kernel/security type securityfs |
| 64 |
> (rw,nosuid,nodev,noexec,relatime) |
| 65 |
> debugfs on /sys/kernel/debug type debugfs |
| 66 |
> (rw,nosuid,nodev,noexec,relatime) |
| 67 |
> fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) |
| 68 |
> devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620) |
| 69 |
> shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime) |
| 70 |
> tmpfs on /tmp type tmpfs (rw,noexec,nosuid) |
| 71 |
> usbfs on /proc/bus/usb type usbfs |
| 72 |
> (rw,noexec,nosuid,devmode=0664,devgid=85) |
| 73 |
> binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc |
| 74 |
> (rw,noexec,nosuid,nodev) |
| 75 |
|
| 76 |
> mount -a |
| 77 |
> mount: wrong fs type, bad option, bad superblock on udev, |
| 78 |
> missing codepage or helper program, or other error |
| 79 |
> (for several filesystems (e.g. nfs, cifs) you might |
| 80 |
> need a /sbin/mount.<type> helper program) |
| 81 |
> In some cases useful info is found in syslog - try |
| 82 |
> dmesg | tail or so |
| 83 |
> |
| 84 |
> mount: unknown filesystem type 'selinuxfs' |
| 85 |
|
| 86 |
Regards: |
| 87 |
Cor |
Archives