SELinux default contexts and PAM session?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



I have a server app that runs from xinetd.

This server's job is to exec a program.

This app is not yet confined by SELinux policy.

 

When I use PAM session service, audit.log shows:

 

type=USER_ROLE_CHANGE msg=audit(1242413723.389:14866): user pid=24149 uid=0 auid=0 subj=system_u:system_r:inetd_t:s0-s0:c0.c1023 msg='pam: default-context=root:system_r:amanda_t:s0-s0:c0.c1023 selected-context=root:system_r:amanda_t:s0-s0:c0.c1023: exe="/usr/sbin/myserverd" (hostname=?, addr=?, terminal=ptmx res=success)'

 

Somehow, SELinux is deciding that the default context should be …amanda_t…

How is that decision made?

Can I create a more correct context (that will be recognized as the default context) without confining the server?

 

 

 

Thanks,

Brian

 

--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list

[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux