|
Hello, I am looking at using SELinux for a GUI based MLS workstation.
For my example I have created a user (user_s1) with a classification of s2 and a second user (user_s2) with classification s3. When in the enforcing mode I am not able to log in (from the GUI) to either users. It just bring be back to
the login screen. After going into permissive mode I try and see what is being blocked by searching the /var/log/audit/audit.log file and looking for “AVC” but I can’t find anything about the login denial. I have used setroubleshoot but still can’t understand
what needs to be modified to make it work. Has anyone gotten a GUI to work with SELinux?
If so what polices need to be modified? Thanks for our help, Claudio |
