On Tuesday 14 October 2008 14:48, "Justin Mattock" <justinmattock@xxxxxxxxx> wrote: > So after using user_r(which I feel is more safe); > I'm noticing I can't login to sysadm_r. That is by design, role transitions to sysadm_r are only permitted from staff_r, system_r, and unconfined_r. > This role seems to be safe in a corporate environment, > but in my case I'm the only user on this machine as well as > the admin. Then staff_r may be a better choice for your logins. Of course there's nothing stopping you from using a ssh client in user_r to connect to a staff_r session (or sysadm_r if you set a boolean to allow sysadm_r ssh logins). -- russell@xxxxxxxxxxxx http://etbe.coker.com.au/ My Blog http://www.coker.com.au/sponsorship.html Sponsoring Free Software development -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
