I nevr found relabel/. command. any other command u have.
Some selinux denied msg are written below, Plz check these denied messages
&
gives me some solution. I am attaching my local.te file.
I am using this file to create local.pp then used semodule -i local.pp to
install thismodule.
Aug 26 11:40:39 remosecurity kernel: audit(1156572639.910:111): avc:
denied
{ getattr } for pid=2041 comm="hald" name="/"
dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0
tcontext=system_u:object_r:file_t:s0 tclass=dir
Aug 26 00:51:17 remosecurity kernel: cdrom: This disc doesn't have any
tracks I recognize!
Aug 26 00:51:17 remosecurity kernel: audit(1156533677.305:112): avc:
denied
{ getattr } for pid=2041 comm="hald" name="/"
dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0
tcontext=system_u:object_r:file_t:s0 tclass=dir
Aug 26 02:11:02 remosecurity kernel: audit(1156538462.736:115): avc:
denied
{ search } for pid=2041 comm="hald" name="/" dev=hda6 ino=2
scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:file_t:s0
tclass=dir
Aug 26 02:21:59 remosecurity kernel: audit(1156539119.081:116): avc:
denied
{ getattr } for pid=2041 comm="hald" name="/"
dev=hda6 ino=2 scontext=system_u:system_r:hald_t:s0
tcontext=system_u:object_r:file_t:s0 tclass=dir
1:- Any other way to use this local.te. and when i change permission
/etc/selinux/config enforcing. i have a session error whein I want to
login.
----- Original Message -----
From: "Rahul" <sundaram@xxxxxxxxxxxxxxxxx>
> To: "Pranav Vishnoi" <pvishnoi@xxxxxxxxxxxxxxxxxxx>
> Cc: "Daniel J Walsh" <dwalsh@xxxxxxxxxx>; <fedora-selinux-list@xxxxxxxxxx>
> Sent: Saturday, August 26, 2006 1:45 AM
> Subject: Re: Icons Disapperd
>
>
> > Pranav Vishnoi wrote:
> > > Thanks Rahul
> > > For giving me a certification details.
> > > But my problem is remain. I have some questions.
> > > 1.After setenforce 1 Iam unable to login root, Where I do changes to
> give
> > > access permision to root. It gives message wrong password. but when I
do
> > > setenforce 0
> > > there is no problem to login as root.
> >
> > Then you need to look at AVC denied messages in /var/log/messages or
> > /var/log/audit (if audit service is enabled) and post the messages to
> > this list if you are unable to figure out and resolve it.
> >
> >
> > > 2. In live cd there is no procedure for auto relabel / structure. any
> short
> > > command for relabel / .
> >
> > relabel /. seems a rather short command to me.
> >
> > > 3. Can I replace policy.20 with policy.18 or used fc3 policy?
> > >
> >
> > Usually a bad idea as newer policies tend to be better.
> >
> > Rahul
>
Attachment:
local.te
Description: Binary data
-- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list
