Re: selinux policy remnant according to /bin/ls on CentOS 6.0 box

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Jon,

Its worth noting in C6 that you really should avoid using RPM to 
add/remove stuff and stick with yum. Yum now supports rolling back and 
forward package changes, but this is broken if you do things with RPM.

Tris


On 20/09/2011 18:48, Jon Detert wrote:
> I installed CentOS 6.0 on 2 different x86_64 boxen.  Both originally had selinux installed and enabled.  I never touched selinux other than to remove as much of it as I could via rpm -e.  As far as I can tell, here are the remaining packages that have something to do with it:
>
> # rpm -qa | grep -iE 'sel|pol'
> checkpolicy-2.0.22-1.el6.x86_64
> libselinux-2.0.94-2.el6.x86_64
> libsepol-2.0.41-3.el6.x86_64
> polkit-0.96-2.el6_0.1.x86_64
> #
>
> Both boxen have those packages.
>
> However:
>
> 1) box1 still has files in /selinux whereas box2's /selinux is empty;
> 2) ls -l on box1 shows a '.' at the end of file/directory, which means a SELinux security context applies, according to https://fedoraproject.org/wiki/Fedora_11_FAQ#Why_does_ls_show_a_dot_.28..29_or_a_plus_.28.2B.29_at_the_end_on_the_file_modes_for_some_files.3F
>
> Any idea why box1 still seems to have an selinux policy applied, and how to un-apply it?
>
> Thanks,
>
> Jon
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos
>
> *************************************************************
> This message has been checked for viruses by the
> Birmingham Grid for Learning.  For guidance on good
> e-mail practice, e-mail viruses and hoaxes please visit:
> http://www.bgfl.org/emailaup
> *************************************************************
>
>
>

*************************************************************
This email and any files transmitted with it are confidential
and intended solely for the use of the individual or entity 
to whom they are addressed. If you have received this email 
in error please notify postmaster@xxxxxxxx

The views expressed within this email are those of the 
individual, and not necessarily those of the organisation
*************************************************************

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos


[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux