[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Backing out of changes to file contexts specification

From: Stephen Smalley <sds tycho nsa gov>
To: Al Pacifico <adpacifico users sourceforge net>
Cc: Daniel J Walsh <dwalsh redhat com>, fedora-selinux-list redhat com
Subject: Re: Backing out of changes to file contexts specification
Date: Mon, 23 Apr 2007 11:25:46 -0400

On Mon, 2007-04-23 at 08:20 -0700, Al Pacifico wrote:
> 
> If I reboot, does the
> file /etc/selinux/targeted/contexts/files/file_contexts get
> automatically rewritten? If so, where does the information that it's
> filled with come from and what process rewrites it? 

It doesn't get rewritten at boot, only upon a change made to the policy
via semodule or semanage (both of which use libsemanage as their
backend).  libsemanage manages a private store
under /etc/selinux/targeted/modules, applies all changes in a sandbox
there first, and then installs to the real locations upon a successful
completion of a transaction.

-- 
Stephen Smalley
National Security Agency

References:
- Backing out of changes to file contexts specification
  - From: Al Pacifico
- Re: Backing out of changes to file contexts specification
  - From: Daniel J Walsh
- Re: Backing out of changes to file contexts specification
  - From: Al Pacifico

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]