On Tue, 6 Jul 2004 11:50, Ivan Gyurdiev <ivg2@xxxxxxxxxxx> wrote: > What's the situation with tmpfs? I have /tmp on tmpfs and I get lots of > denials. Tmpfs doesn't seem to support xattrs, however.. > > SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs > SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs > SELinux: initialized (dev tmpfs, type tmpfs), uses transition SIDs > > Is /tmp on tmpfs something that should work, or is this not supported? > What about /dev on tmpfs (or /udev)? Making /dev on tmpfs should work. /tmp on tmpfs will not work properly because it's labelled as tmpfs_t (which is also used for SysV shared memory). See the following URL for more discussion of this issue: http://marc.theaimsgroup.com/?l=selinux&m=104438419029394&w=2 -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page
