I'm running an mls/permissive policy on FC6 and service and system-
config-services start daemons in the user's selinux context rather
than those in /etc/selinux/mls/contexts/initrc_context. Since our
policies use init_daemon_domain to establish domain transitions, they
are not transitioning into the correct domain on user initiated (re)
starts.
"run_init service <service> restart" - works, but leaves us in a
situation where documentation doesn't match experience. What is the
right approach to getting the transitions to work properly? Patch
service and friends? Write a more generic transition?
joe
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
