[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: bind-mounted homedirs
- From: Daniel J Walsh <dwalsh redhat com>
- To: Paul Howarth <paul city-fan org>
- Cc: Fedora SELinux support list <fedora-selinux-list redhat com>
- Subject: Re: bind-mounted homedirs
- Date: Mon, 26 Jan 2009 15:18:05 -0500
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Paul Howarth wrote:
> On a RHEL 5 server I have bind-mounted home directories, where the data
> on the server actually lives in /srv/homes but this is bind-mounted to
> /nis-home. The user home directories in LDAP refer to the /nis-home
> locations.
>
> When I updated to the 5.3 selinux policy, everything under /srv/homes
> got relabelled based on the /srv/homes pathname rather than the
> /nis-home pathname. What would be the best way of preventing this from
> happening in the future?
>
> Paul.
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list redhat com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
You can setup the labeling using semanage.
semanage fcontext -a -t home_root_t /srv/homes
semanage fcontext -a -t user_home_dir_t -f-d '/srv/homes/[^/]*'
semanage fcontext -a -t user_home_t '/srv/homes/[^/]*/.+'
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkl+GnwACgkQrlYvE4MpobOEDwCgmhwNgU7k1t758tSoqj3MLH/z
+moAmwUoMtJsGu1QOPa8zZl6jfNmWqfn
=RJgs
-----END PGP SIGNATURE-----
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]