Re: SELinux and access across 'similar types'

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 01/08/2012 02:10 PM, Marko Vojinovic wrote:
>> [root@g6950-21025 ~]# restorecon -v /tmp/hostname_SKYSLICE.INFO
>> >  [root@g6950-21025 ~]# ls -lZ /tmp/hostname_SKYSLICE.INFO
>> >  -rw-r--r--  apache apache system_u:object_r:file_t
>> >  /tmp/hostname_SKYSLICE.INFO
>> >  [root@g6950-21025 ~]#
> Well...
>
> With this output I would say that your policy has been customized to have
> file_t as the default label for that file. Have you used audit2allow on that
> machine before the filesystem was properly relabeled?

That file is in the /tpm folder, used by apache. I guess that apache was 
not stopped since/during relabeling so it stayed.

My suggestion:

stop apache
run relabeling again (if file continues to exists)
start apache
check

-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux