On Mon, Jun 2, 2008 at 12:09 PM, Christopher J. PeBenito <cpebenito@xxxxxxxxxx> wrote: > On Sat, 2008-05-31 at 06:11 +0000, Justin Mattock wrote: >> Hello, I'm running an experiment with SELinux and seem to be at a crux >> with changing roles: >> newrole -r user_r >> I get a permission denied, the allow rule is this: allow newrole_t >> user_t:process transition; >> I don't have a problem changing to sysadm_r any thoughts on what I'm missing? > > Sounds like your user is staff_u or root. Neither users are allowed > user_r. > > -- > Chris PeBenito > Tresys Technology, LLC > (410) 290-1411 x150 > > Yeah after reading some post's about xserver, I decided to see if I could startx in staff_r, everything was fine except for changing to user_r to use firefox, and so forth. Keep in mind this was just a test to see, Overall I don't have a problem keeping what I have now. And it also makes sense about what you had said "Neither users are allowed". regards -- Justin P. Mattock -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
