[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: problems with tmpfs and relabeling

From: Stephen Smalley <sds tycho nsa gov>
To: Bill Nottingham <notting redhat com>
Cc: James Morris <jmorris redhat com>, Daniel J Walsh <dwalsh redhat com>, fedora-selinux-list redhat com
Subject: Re: problems with tmpfs and relabeling
Date: Fri, 21 Apr 2006 12:50:09 -0400

On Fri, 2006-04-21 at 12:37 -0400, Bill Nottingham wrote:
> Yes. Consider pid files in /var/run, lock files in /var/lock, etc.
> 
> > Do you expect them to follow the traditional
> > inherit-from-parent-directory behavior you get from ext3?  
> 
> Yes.

Yes, and that's ok.  I think we just need to adjust policy to allow
restorecon to fix the label on the root directory, and (on the separate
issue of policy), we need a rw mount on /etc/selinux separate from the
rest of root so that we can perform policy module operations.

-- 
Stephen Smalley
National Security Agency

Follow-Ups:
- Re: problems with tmpfs and relabeling
  - From: Bill Nottingham

References:
- problems with tmpfs and relabeling
  - From: Bill Nottingham
- Re: problems with tmpfs and relabeling
  - From: Stephen Smalley
- Re: problems with tmpfs and relabeling
  - From: Bill Nottingham
- Re: problems with tmpfs and relabeling
  - From: Bill Nottingham
- Re: problems with tmpfs and relabeling
  - From: Stephen Smalley
- Re: problems with tmpfs and relabeling
  - From: Bill Nottingham
- Re: problems with tmpfs and relabeling
  - From: Stephen Smalley
- Re: problems with tmpfs and relabeling
  - From: Bill Nottingham

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]