On 07/01/2014 04:47 AM, dE wrote:
> The default security context of a object also depends on it's class.
>
> I was looking at
> etc/selinux/<SELINUXTYPE>/contexts/files/file_contexts*, but I
> couldn't see any definition of a class.
>
> Also semanage fcontext doesn't have an option define a class. Entries
> are based only on files and directories.
>
> If you get red text in this email please notify.
> _______________________________________________
> Selinux mailing list
> Selinux@xxxxxxxxxxxxx
> To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx.
> To get help, send an email containing "help" to
> Selinux-request@xxxxxxxxxxxxx.
I believe the answer to your question is:
man semanage-fcontext
...
-f [{a,f,d,c,b,s,l,p}], --ftype [{a,f,d,c,b,s,l,p}]
File Type. This is used with fcontext. Requires a file
type as shown in the mode field by ls, e.g. use 'd' to match only
directories
or 'f' to match only regular files. The following
file type options can be passed: f (regular file),d (directory),c (character
device), b (block device),s (socket),l (symbolic link),p
(named pipe). If you do not specify a file type, the file type will
default to "all files".
_______________________________________________
Selinux mailing list
Selinux@xxxxxxxxxxxxx
To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx.
To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
