On Aug 1, 2011, at 10:32 AM, Ted Toth wrote: > I'm writing policy for some scripts. Script 'a' runs script 'b' and they > each have their own entry file and domain type. There is a type transition > for a_t through b_exec_t to b_t in the policy. However the transition > doesn't happen. Script 'a' does a chown on script 'b' prior to running it. > If I remove the chown the transition does happen as expected. Can chown > somehow affect the file label? 'ls -Z' doesn't show any change. Does the transition occur if b is already chowned? Could you have a DAC issue after the chown? joe -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
