[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

SELinux macro broken?



Hi,

when I tried to build a custom SELinux module, this strange behavior
occured:

when I used:

libs_read_lib_files(tomcat5_t)

I got "read" denied source: tomcat5_t target: lib_t

but using

require {
        type lib_t;
        type tomcat5_t;
        class file read;
}

allow tomcat5_t lib_t:file read;

worked fine. Although this should essentially be the same in my
understanding.

Any explanations for that?

regards

christoph


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]