mounting nfs as httpd_sys_content_t under selinux

Eric Paris eparis at redhat.com
Mon Dec 10 17:24:12 UTC 2007


On Mon, 2007-12-10 at 12:02 -0500, Johnny Tan wrote:
> Stephen Smalley wrote:
> > Did you already have a mount from the same server/filesystem when you
> > tried doing this?  If so, unmount those first and try again - context
> > mounts are limited to one per superblock.
> 
> Thanks Stephen & Eric.
> 
> Yes, the problem was I had another mount from the same server.
> 
> So, now both mounts have httpd_sys_content_t context even 
> though I only put that option on one of them. I do not want 
> the other mount to have this context.
> 
> Based on what you're saying, that's not possible, right, 
> since they are coming from the same server?

You might get what you want with the nosharecache mount option i
mentioned, if adding that to both mounts doesn't help, yeah, you are
stuck, sorry.

-Eric




More information about the fedora-selinux-list mailing list