On 09/28/2009 04:13 PM, Orion Poplawski wrote: > On 09/28/2009 01:03 PM, Daniel J Walsh wrote: >> On 09/22/2009 11:49 AM, Orion Poplawski wrote: >>> On 09/22/2009 09:12 AM, Daniel J Walsh wrote: >>>> On 09/22/2009 07:25 AM, Orion Poplawski wrote: >>>>> On 09/21/2009 08:32 PM, Daniel J Walsh wrote: >>>>>> Do you have labels on the rest of the system? Do you have seedit >>>>>> installed? >>>>> >>>>> Yes, e.g.: >>>>> >>>>> # ls -Za /etc/ssh >>>>> drwxr-xr-x root root system_u:object_r:etc_t . >>>>> drwxr-xr-x root root system_u:object_r:etc_t .. >>>>> -rw------- root root system_u:object_r:etc_t moduli >>>>> -rw-r--r-- root root user_u:object_r:etc_t ssh_config >>>>> -rw------- root root system_u:object_r:etc_t sshd_config >>>>> -rw------- root root system_u:object_r:sshd_key_t >>>>> ssh_host_dsa_key >>>>> -rw-r--r-- root root root:object_r:etc_t >>>>> ssh_host_dsa_key.pub >>>>> -rw------- root root system_u:object_r:sshd_key_t ssh_host_key >>>>> -rw-r--r-- root root root:object_r:etc_t >>>>> ssh_host_key.pub >>>>> -rw------- root root system_u:object_r:sshd_key_t >>>>> ssh_host_rsa_key >>>>> -rw-r--r-- root root root:object_r:etc_t >>>>> ssh_host_rsa_key.pub >>>>> -rw-r--r-- root root user_u:object_r:etc_t ssh_known_hosts >>>>> >>>>> Don't appear to have seedit, never heard of it. >>>>> >>>> Right now as root you execute >>>> >>>> # chcon system_u:object_r:etc_t:s0 /etc/ssh >>>> >>>> It gives you an error? >>> >>> yup. >>> >>> # chcon system_u:object_r:etc_t:s0 /etc/ssh >>> chcon: failed to change context of /etc/ssh to >>> system_u:object_r:etc_t:s0: Operation not permitted >>> >> Just back from linuxcon. Can we bring this to the list? >> > > Definitely, which one? > > SE Linux <selinux@xxxxxxxxxxxxx> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
