So with strict policy you would run
setfiles /etc/selinux/strict/contexts/files/file_contexts /home to relabel homedirs.
After running fixfiles relabel you should always reboot in order to start programs under the right context, If you do this in level 5 there is a chance the applications will write files out with bad context after the relabel, before the reboot.
David Balazic wrote:
From: Russell Coker[SMTP:russell@xxxxxxxxxxxx]
On Wed, 9 Jun 2004 17:42, David Balazic <david.balazic@xxxxxxxxx> wrote:
This is a known bug, when firstboot creates a user it doesn't give theBecause I get a failure right 5 minutes after installation.
I did a SELinux enabled install of FC2 ( Workstation type ).
In firstboot I created a user.
correct type to the home directory files. Running setfiles is the correct thing
to do. But you don't have to label the entire file system, just the home directory for the new user.
setfiles requires some "policy" argument, what do I use ? Well, I just run "fixfiles relabel" ( not is runlevel 1, as suggested by Andrew Farris, but level 5, is that a problem ? ). Now login on VCx is OK, but login in X still does not work. Previously it reported that my home dir does not exist, but now after the "fix" , when I enter my username and password an blank blue screen with a mouse pointer ( pointer, not sandwatch ) appears and nothing happens. I waited 30 seconds and switched to VC1 to check out what is happening, but then the screen started to blink. It went black for ~5 seconds, then back to VC1 for a second , then black again and so on. Maybe the X server was restarting.
Any clues ?
David Balažic
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
http://www.redhat.com/mailman/listinfo/fedora-selinux-list
