-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Per Sjoholm wrote: > Daniel J Walsh wrote: > Per Sjoholm wrote: > >>>> I have som problem with alerts of default_t and relabel does not solve >>>> the problem >>>> Running FC7 >>>> I have my machine local home under /home_l /home is used for nfs/autofs >>>> >>>> #> genhomedircon >>>> #> touch /.autorelabel ; reboot >>>> /home_l/*/* gets labeled with default_t >>>> >>>> restorecon -v -R /home_l >>>> labels with user_home_t >>>> >>>> Why is there a differns between autorelabel and restorecon >>>> Why does autorelabel sets /home and /home_l to default_t >>>> >>>> > Does the system know that /home_l is a homedir? IE Do you have a > password record that tells it this? Or did you use > There are records with /home_l in /etc/passwd > No records with /home > $ grep home /etc/passwd > user1:x:1000:1000::/home_l/user1:/bin/bash > user2:x:1001:1001::/home_l/user2:/bin/bash > $ ls -Zd /home_l /home > drwxr-xr-x root root system_u:object_r:default_t /home > drwxr-xr-x root root system_u:object_r:home_root_t /home_l > $ ls -Z /home_l /home > /home: > /home_l: > drwx------ user1 user1 user_u:object_r:user_home_dir_t user1 > drwx------ user2 user2 user_u:object_r:user_home_dir_t user2 > /Per Ok Then I would just add the rule semanage fcontext -a -t home_root_t /home_l -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHQfHirlYvE4MpobMRAvWbAJwK2xMApz7xDwiXs0i011Xs6/jBSQCfR0o1 qi3F/GdL//0Fwp0ZKo1zLOI= =equU -----END PGP SIGNATURE----- -- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list
