I nevr found relabel/. command. any other command u have. Some selinux denied msg are written below, Plz check these denied messages & gives me some solution. I am attaching my local.te file. I am using this file to create local.pp then used semodule -i local.pp to install thismodule. Aug 26 11:40:39 remosecurity kernel: audit(1156572639.910:111): avc: denied { getattr } for pid=2041 comm="hald" name="/" dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=dir Aug 26 00:51:17 remosecurity kernel: cdrom: This disc doesn't have any tracks I recognize! Aug 26 00:51:17 remosecurity kernel: audit(1156533677.305:112): avc: denied { getattr } for pid=2041 comm="hald" name="/" dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=dir Aug 26 02:11:02 remosecurity kernel: audit(1156538462.736:115): avc: denied { search } for pid=2041 comm="hald" name="/" dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=dir Aug 26 02:21:59 remosecurity kernel: audit(1156539119.081:116): avc: denied { getattr } for pid=2041 comm="hald" name="/" dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=dir 1:- Any other way to use this local.te. and when i change permission /etc/selinux/config enforcing. i have a session error whein I want to login. ----- Original Message ----- From: "Rahul" <sundaram@xxxxxxxxxxxxxxxxx> > To: "Pranav Vishnoi" <pvishnoi@xxxxxxxxxxxxxxxxxxx> > Cc: "Daniel J Walsh" <dwalsh@xxxxxxxxxx>; <fedora-selinux-list@xxxxxxxxxx> > Sent: Saturday, August 26, 2006 1:45 AM > Subject: Re: Icons Disapperd > > > > Pranav Vishnoi wrote: > > > Thanks Rahul > > > For giving me a certification details. > > > But my problem is remain. I have some questions. > > > 1.After setenforce 1 Iam unable to login root, Where I do changes to > give > > > access permision to root. It gives message wrong password. but when I do > > > setenforce 0 > > > there is no problem to login as root. > > > > Then you need to look at AVC denied messages in /var/log/messages or > > /var/log/audit (if audit service is enabled) and post the messages to > > this list if you are unable to figure out and resolve it. > > > > > > > 2. In live cd there is no procedure for auto relabel / structure. any > short > > > command for relabel / . > > > > relabel /. seems a rather short command to me. > > > > > 3. Can I replace policy.20 with policy.18 or used fc3 policy? > > > > > > > Usually a bad idea as newer policies tend to be better. > > > > Rahul >
Attachment:
local.te
Description: Binary data
-- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list