SELinux problem (was Re: Is httpd in FC3 chrooted???)
Daniel J Walsh
dwalsh at redhat.com
Tue Feb 8 20:38:57 UTC 2005
D. D. Brierton wrote:
>On Tue, 2005-02-08 at 09:36 -0500, Steve Brueckner wrote:
>
>
>>Sounds like there may be some problems with your SELinux install, since that
>>chcon command should work.
>>
>>
>
>Apparently so.
>
>
>
>>At a glance, it looks like your file system never got labeled properly.
>>
>>
>
>Well, my /home partition (/dev/hda5, ext3) to be precise. Everything
>else seemed to have been labeled correctly.
>
>
>
>>Try:
>>
>>touch /.autorelabel
>>reboot
>>
>>
>
>That's done the trick. Everything seems to be working fine now.
>
>Thanks!
>
>Best, Darren
>
>
>
Restorecon bug should be fixed in the next policycoreutils release.
Basically it is segfaulting if a file system
was never labeled.
A fresh install of selinux will relabel a file system, but if you had
your home directory on a separate file system it was never
labeled. /.autorelabel fixed it. but if you get the new restorecon it
should have worked also.
Any time you see file_t that is a file labeling problem. file_t is what
the kernel returns when a file is not labeled.
Dan
More information about the fedora-list
mailing list