restorecon question
Vadym Chepkov
chepkov at yahoo.com
Wed Jul 22 18:06:44 UTC 2009
Hi,
Could you explain me, please, the behavior of the restorecon utility.
I added the following in the local.fc file
# phpbb
/var/www/phpbb/cache(/.*)? gen_context(system_u:object_r:httpd_sys_script_rw_t,s0)
/var/www/phpbb/files(/.*)? gen_context(system_u:object_r:httpd_sys_script_rw_t,s0)
compiled and installed policy, seems to be in place.
# semanage fcontext -l|grep phpbb
/var/www/phpbb/cache(/.*)? all files system_u:object_r:httpd_sys_script_rw_t:s0
/var/www/phpbb/files(/.*)? all files system_u:object_r:httpd_sys_script_rw_t:s0
But when now I run restorecon -vR /var/www/phpbb/
it doesn't do anything. I would expect it to changed context on two directories and files in them.
Only if I specify -F (force) I relabel everything.
I can't quite grasp why sometimes I don't have to supply -F and sometimes I do.
Thank you.
Sincerely yours,
Vadym Chepkov
More information about the fedora-selinux-list
mailing list