-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Still trying to think of a good solution for alternate file layouts. This email below points out another problem in addition to /home mapping. Maybe we could add a semanage fcontext --duplicate /home /exports/home semanage fcontext --duplicate /var/log /cluster/log Which would cause semanage to duplicate all file context mappings that begin with the prefix /home to /exports/home. What do you think? - -------- Original Message -------- Subject: Re: bind-mounted homedirs Date: Wed, 4 Feb 2009 09:26:06 +0000 From: pgega@xxxxxxxxxx Organization: PayPoint.net To: Daniel J Walsh <dwalsh@xxxxxxxxxx>, Paul Howarth <paul@xxxxxxxxxxxx> CC: fedora-selinux-list@xxxxxxxxxx References: <49787F7C.2090907@xxxxxxxxxxxx> <20090126203147.75c37c15@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <497F13A8.9050105@xxxxxxxxxx> Hello, > File, but I think the solution is to be able to add alternative roots in > the libsemanage.conf file and have it do the labeling for you. I do have a very similar problem - I run a bit modified version of base filesystem (for cluster purpose) and some directories are moved to /node or /cluster and symlinked to original location. For example there is /var/log which is a symlink to /node/var/log. And during relabels/restorecon log files in /node/var/log are not labeled properly (labeled as default_t). It's not really possible to give alternative root paths in semanage.conf, is it ? If so ,that would solve my problem. Kind Regards, Pawel Gega -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkmR1AwACgkQrlYvE4MpobMiwwCgutTQapXKuhwdIjDhGU3wPoBb EV8AoOtxtO8PN22CTw2jRnndTaS+Zl0W =Bfta -----END PGP SIGNATURE-----
-- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list
Attachment:
Attached Message Part.sig
Description: Binary data
