On Mon, Jun 2, 2008 at 4:38 PM, Clarkson, Mike R (US SSA) <mike.clarkson@xxxxxxxxxxxxxx> wrote: > Which SELinux user are you logging in as? > > When you type "semanage user -l", does that user list user_r as one of > its available roles? If not, you won't be able to change to user_r > >> -----Original Message----- >> From: owner-selinux@xxxxxxxxxxxxx [mailto:owner-selinux@xxxxxxxxxxxxx] > On >> Behalf Of Justin Mattock >> Sent: Friday, May 30, 2008 11:11 PM >> To: selinux@xxxxxxxxxxxxx >> Subject: changing role to user_r >> >> Hello, I'm running an experiment with SELinux and seem to be at a crux >> with changing roles: >> newrole -r user_r >> I get a permission denied, the allow rule is this: allow newrole_t >> user_t:process transition; >> I don't have a problem changing to sysadm_r any thoughts on what I'm >> missing? >> >> -- >> Justin P. Mattock >> >> -- >> This message was distributed to subscribers of the selinux mailing > list. >> If you no longer wish to subscribe, send mail to > majordomo@xxxxxxxxxxxxx >> with >> the words "unsubscribe selinux" without quotes as the message. > > initially I log in as sysadm_r, and then change roles for particular applications. as for policy style I'm not using binary, I'm using monolithic -- Justin P. Mattock -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
