-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09/22/2011 09:01 AM, Adam Przybyla wrote: > On Wed, Sep 21, 2011 at 01:47:32PM -0800, Erinn Looney-Triggs > wrote: >> I am using puppet to manage my system configuration and I am >> looking for the best way to manage file context changes between >> multiple hosts. >> >> Basically I have some local changes that are held in >> /etc/selinux/targeted/modules/active/file_contexts.local, is it >> reasonable just to copy this file to hosts that need to be aware >> of the changes held therein or is there a better method? >> >> This would be implemented on RHEL 5 and 6 systems. > ... try csync2: > http://thuannvn.blogspot.com/2010/01/csync2-is-so-cool.html > Regards Adam Przybyla -- selinux mailing list > selinux@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/selinux Also make sure any tool that you use, insures the label on files (restorecon) after putting them in place. Having the tool understand SELinux and telling the kernel to label the file before it is created is even better. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk57NucACgkQrlYvE4MpobPWNwCdEm0gYKYrlO0VFHUh7MQ2PsvQ cAsAoNaB7cYYWqKXFUYzH/mstB+iAr6P =dsLd -----END PGP SIGNATURE----- -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
