problem relabeling with FC2
Ismail Iyigunler
iyigunler at itu.edu.tr
Wed Jun 16 14:08:29 UTC 2004
Hi
But there are some directories and files shown as "(null)". like /lost+found
or /sys. Is this normal?
There's no AVC messages shown for it, also in /var/log/messages, and this
happens both in enforcing and permissive mode.
Quoting Russell Coker <russell at coker.com.au>:
> On Wed, 16 Jun 2004 22:56, Ismail Iyigunler <iyigunler at itu.edu.tr> wrote:
> > I'm using Fedora Core 2 with kernel 2.6.6 with SELinux. However some of my
> > directories' (in /proc for example) security context still looks "(null)".
>
> There is no kernel support for exporting the security context of files
> in /proc to user space via the XATTR interface. So "ls -Z /proc" will always
>
> show "(null)". This has been discussed on the main SE Linux list, it's
> currently not considered to be worth the effort of changing this.
>
> Some other file systems that lack the virtual XATTR support that devpts has
> will get it added.
>
> > [root at santiago /]# make -C /etc/security/selinux/src/policy/ relabel
> >
> [...]
> > /usr/bin/setfiles: read 1426 spesifications
> > /usr/bin/setfiles: labeling files under /
> > /usr/bin/setfiles: error while labeling files under /
> > make:*** [relabel] Error 1
> > make: Leaving directory '/etc/security/selinux/src/policy'
> > [root at santiago policy]#
>
> Are there any AVC messages displayed about setfiles? Are you in enforcing
> mode?
>
> --
> http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
> http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
> http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
> http://www.coker.com.au/~russell/ My home page
>
-------------------------------------------------
This mail sent through IMP: http://webmail.students.itu.edu.tr
More information about the fedora-selinux-list
mailing list