[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: get the red and green back (really consoletype, rhgb)

From: Daniel J Walsh <dwalsh redhat com>
To: russell coker com au, "Fedora SELinux support list for users & developers." <fedora-selinux-list redhat com>
Cc:
Subject: Re: get the red and green back (really consoletype, rhgb)
Date: Wed, 22 Sep 2004 14:46:42 -0400

Russell Coker wrote:

On Sat, 18 Sep 2004 04:35, Tom London <selinux gmail com> wrote:
Need this in rhgb.te:
--- /etc/selinux/strict/src-1.17.18-1/policy/domains/program/rhgb.te
2004-09-17 11:32:00.886510890 -0700
+++ ./rhgb.te   2004-09-17 11:33:42.601099238 -0700
@@ -34,7 +34,7 @@
allow insmod_t rhgb_t:fd use;
allow rhgb_t ramfs_t:filesystem { mount unmount };
-allow rhgb_t root_t:dir { mounton };
+allow rhgb_t { root_t mnt_t }:dir { mounton };
allow rhgb_t rhgb_t:capability { sys_admin };
dontaudit rhgb_t var_run_t:dir { search };
Otherwise can't mount....
Does it still need access to mount on type root_t?

RHGB doesn't work for me at the moment due to other errors so I can't test.

No I removed root_t.

Follow-Ups:
- Re: get the red and green back (really consoletype, rhgb)
  - From: Tom London

References:
- get the red and green back (really consoletype, rhgb)
  - From: Tom London
- Re: get the red and green back (really consoletype, rhgb)
  - From: Tom London
- Re: get the red and green back (really consoletype, rhgb)
  - From: Tom London
- Re: get the red and green back (really consoletype, rhgb)
  - From: Russell Coker

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]