Can not access files in own home directory

Daniel J Walsh dwalsh at redhat.com
Thu Jun 10 13:44:14 UTC 2004 

setfiles takes the file_contexts file as the second parameter, if you 
look at fixfiles that is all that it is  doing is execing setfiles.

So with strict policy you would run

setfiles /etc/selinux/strict/contexts/files/file_contexts /home
to relabel homedirs.

After running fixfiles relabel you should always reboot in order to 
start programs under the right context,  If you do this in level 5 there 
is a chance the applications will write files out with bad context after 
the relabel, before the reboot.

David Balazic wrote:

>>From: 	Russell Coker[SMTP:russell at coker.com.au]
>>
>>On Wed, 9 Jun 2004 17:42, David Balazic <david.balazic at hermes.si> wrote:
>>    
>>
>>>Because I get a failure right 5 minutes after installation.
>>>
>>>I did a SELinux enabled install of FC2 ( Workstation type ).
>>>In firstboot I created a user.
>>>      
>>>
>>This is a known bug, when firstboot creates a user it doesn't give the
>>correct 
>>type to the home directory files.  Running setfiles is the correct thing
>>to 
>>do.  But you don't have to label the entire file system, just the home 
>>directory for the new user.
>>
>>    
>>
>setfiles requires some "policy" argument, what do I use ?
>Well, I just run "fixfiles relabel" ( not is runlevel 1, as suggested by
>Andrew Farris,
>but level 5, is that a problem ? ).
>Now login on VCx is OK, but login in X still does not work. Previously it
>reported that
>my home dir does not exist, but now after the "fix" , when I enter my
>username and
>password an blank blue screen with a mouse pointer ( pointer, not sandwatch
>) appears
>and nothing happens. I waited 30 seconds and switched to VC1 to check out
>what is
>happening, but then the screen started to blink. It went black for ~5
>seconds, then back
>to VC1 for a second , then black again and so on. Maybe the X server was
>restarting.
>
>Any clues ?
>
>David Balažic
>
>--
>fedora-selinux-list mailing list
>fedora-selinux-list at redhat.com
>http://www.redhat.com/mailman/listinfo/fedora-selinux-list
>  
>

More information about the fedora-selinux-list mailing list