Hi But there are some directories and files shown as "(null)". like /lost+found or /sys. Is this normal? There's no AVC messages shown for it, also in /var/log/messages, and this happens both in enforcing and permissive mode. Quoting Russell Coker <russell@xxxxxxxxxxxx>: > On Wed, 16 Jun 2004 22:56, Ismail Iyigunler <iyigunler@xxxxxxxxxx> wrote: > > I'm using Fedora Core 2 with kernel 2.6.6 with SELinux. However some of my > > directories' (in /proc for example) security context still looks "(null)". > > There is no kernel support for exporting the security context of files > in /proc to user space via the XATTR interface. So "ls -Z /proc" will always > > show "(null)". This has been discussed on the main SE Linux list, it's > currently not considered to be worth the effort of changing this. > > Some other file systems that lack the virtual XATTR support that devpts has > will get it added. > > > [root@santiago /]# make -C /etc/security/selinux/src/policy/ relabel > > > [...] > > /usr/bin/setfiles: read 1426 spesifications > > /usr/bin/setfiles: labeling files under / > > /usr/bin/setfiles: error while labeling files under / > > make:*** [relabel] Error 1 > > make: Leaving directory '/etc/security/selinux/src/policy' > > [root@santiago policy]# > > Are there any AVC messages displayed about setfiles? Are you in enforcing > mode? > > -- > http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages > http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark > http://www.coker.com.au/postal/ Postal SMTP/POP benchmark > http://www.coker.com.au/~russell/ My home page > ------------------------------------------------- This mail sent through IMP: http://webmail.students.itu.edu.tr
