----- Original Message ----- > From: "Aman Sharma" <amansh.sharma5@xxxxxxxxx> > To: "SELinux" <selinux@xxxxxxxxxxxxx> > Sent: Thursday, November 30, 2017 11:26:21 PM > Subject: Re: Fwd: Qwery regarding Selinux Change Id context > > Hi , > > mv /var/lib/selinux/targeted /var/lib/selinux/targeted.old > > This targeted folder is not there. > > After searching I got the below result : > > find / -type d -name "*targeted" -print > > /usr/share/selinux/targeted > /etc/selinux/targeted > > Pleas let me know your comments. > Run mv /etc/selinux/targeted /etc/selinux/targeted.old yum reinstall selinux-policy-targeted Also what does this output show ps -aelfZ | grep -i ssh > > On Fri, Dec 1, 2017 at 1:49 AM, Dominick Grift <dac.override@xxxxxxxxx> > wrote: > > > On Thu, Nov 30, 2017 at 11:10:43AM +0530, Aman Sharma wrote: > > > Hi Stephen, > > > > > > After reseting Selinux targeted folder also (the steps you mentioned in > > the > > > earlier mail), Still its showing the same Id context i.e. > > > > > > *id* > > > *uid=0(root) gid=0(root) groups=0(root) > > > context=system_u:system_r:unconfined_t:s0-s0:c0.c1023* > > > *[root@cucm2 ~]# id -Z* > > > *system_u:system_r:unconfined_t:s0-s0:c0.c1023* > > > > > > *And semanage login -l is showing blank output. * > > > > > > *Do you have any idea about this.* > > > > > > *Thanks* > > > *Aman* > > > > Try the same procedure again but this time also do before reinstalling: > > > > mv /var/lib/selinux/targeted /var/lib/selinux/targeted.old > > > > > > > > > > > On Wed, Nov 29, 2017 at 11:04 PM, Stephen Smalley <sds@xxxxxxxxxxxxx> > > wrote: > > > > > > > On Wed, 2017-11-29 at 22:01 +0530, Aman Sharma wrote: > > > > > After resetting boolean also, showing the same id context. > > > > > > > > And did you try fully resetting your policy as I suggested: > > > > mv /etc/selinux/targeted /etc/selinux/targeted.old > > > > yum reinstall selinux-policy-targeted > > > > reboot > > > > > > > > > > > > > > > > > > > On Wed, Nov 29, 2017 at 9:50 PM, Stephen Smalley <sds@xxxxxxxxxxxxx> > > > > > wrote: > > > > > > On Wed, 2017-11-29 at 21:39 +0530, Aman Sharma wrote: > > > > > > > Hi Stephen, > > > > > > > > > > > > > > After enabling the unconfined module and after reboot also, Still > > > > > > > showing the same id context. > > > > > > > > > > > > > > Is there any way to make the id context to normal state again ? > > > > > > > > > > > > Hmmm...try resetting all booleans too? semanage boolean -D > > > > > > > > > > > > Or you could be drastic and completely reset your policy: > > > > > > mv /etc/selinux/targeted /etc/selinux/targeted.old > > > > > > yum reinstall selinux-policy-targeted > > > > > > > > > > > > > > > > > > > > > > > > > > -- > > > > > > > > > > Thanks > > > > > Aman > > > > > Cell: +91 9990296404 | Email ID : amansh.sharma5@xxxxxxxxx > > > > > > > > > > > > > > > > -- > > > > > > Thanks > > > Aman > > > Cell: +91 9990296404 | Email ID : amansh.sharma5@xxxxxxxxx > > > > -- > > Key fingerprint = 5F4D 3CDB D3F8 3652 FBD8 02D5 3B6C 5F1D 2C7B 6B02 > > https://sks-keyservers.net/pks/lookup?op=get&search=0x3B6C5F1D2C7B6B02 > > Dominick Grift > > > > > > -- > > Thanks > Aman > Cell: +91 9990296404 | Email ID : amansh.sharma5@xxxxxxxxx > -- Simon Sekidde gpg: 5848 958E 73BA 04D3 7C06 F096 1BA1 2DBF 94BC 377E
