... is not a valid context
Todd Merritt
tmerritt at email.arizona.edu
Wed Aug 10 16:34:31 UTC 2005
On Wed, 2005-08-10 at 12:30 -0400, Stephen Smalley wrote:
> On Wed, 2005-08-10 at 09:26 -0700, Todd Merritt wrote:
> > It's getting in there from somewhere:
> >
> > [root at tubb policy]# grep allow policy.conf |grep ua_pw_user_r
> > allow user_r ua_pw_user_r;
> > allow sysadm_r ua_pw_user_r;
> >
> > But, after switching it to full_user role
> >
> > allow system_r ua_pw_user_r;
> >
> > is added to the policy and everything works.
>
> The issue isn't the allow rule - it is the missing role statement, i.e.
> role ua_pw_user_r types ua_pw_user_t;
>
I realized that after I fired off the message, sorry about that.
More information about the fedora-selinux-list
mailing list