On Wed, 2011-09-21 at 13:47 -0800, Erinn Looney-Triggs wrote: > I am using puppet to manage my system configuration and I am looking for > the best way to manage file context changes between multiple hosts. > > Basically I have some local changes that are held in > /etc/selinux/targeted/modules/active/file_contexts.local, is it > reasonable just to copy this file to hosts that need to be aware of the > changes held therein or is there a better method? > > This would be implemented on RHEL 5 and 6 systems. I guess the following might be the preferred way: > Managing multiple machines > Multiple machines that need the same customizations. > Extract customizations off first machine, copy them > to second and import them. > > # semanage -o /tmp/local.selinux > # scp /tmp/local.selinux secondmachine:/tmp > # ssh secondmachine > # semanage -i /tmp/local.selinux > > If these customizations include file context, you need to apply the > context using restorecon. From: "man semanage" > Thanks, > -Erinn > > -- > selinux mailing list > selinux@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/selinux
Attachment:
signature.asc
Description: This is a digitally signed message part
-- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
