Re: Selinux context type is same for root & normal user both

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Dominick Grift <dominick.grift@xxxxxxxxxxx> writes:

> Ashish Mishra <ashishm@xxxxxxxxxx> writes:
>
>> Hi Dominick ,
>>
>> 1) Thanks for pointers .
>>      I will look at the suggestion for login programs.
>>
>> 2) The major discrepancy which i am observing is all the folder and files across
>>      filesystem have same context "system_u:object_r:root_t"
>>      Like /etc ,  /var , /bin , /root etc all folders & files have
>> this same context .
>>      Attached is the context log for the folder.
>
> Can you also enclose the output of the `mount` command? It might help to
> give us an idea of your filesystem requirements

It is probably not a good idea (and not needed) to have auditd on these types of systems
by the way

>
>
>>
>> Any feedback / pointer on point-2 will be helpful .
>> I will evaluate the point-1 as suggested .
>>
>> Thanks for sharing valuable info.
>> Ashish
>>
>> home # ps -Z
>>   PID CONTEXT                          STAT COMMAND
>>     1 system_u:system_r:kernel_t       S    init
>>     2 system_u:system_r:kernel_t       SW   [kthreadd]
>>     3 system_u:system_r:kernel_t       SW   [ksoftirqd/0]
>>     4 system_u:system_r:kernel_t       SW   [kworker/0:0]
>>     5 system_u:system_r:kernel_t       SW<  [kworker/0:0H]
>>     6 system_u:system_r:kernel_t       SW   [kworker/u8:0]
>>     7 system_u:system_r:kernel_t       SW   [rcu_sched]
>>     8 system_u:system_r:kernel_t       SW   [rcu_bh]
>>     9 system_u:system_r:kernel_t       SW   [migration/0]
>>    10 system_u:system_r:kernel_t       SW<  [lru-add-drain]
>>    11 system_u:system_r:kernel_t       SW   [cpuhp/0]
>>    12 system_u:system_r:kernel_t       SW   [kdevtmpfs]
>>    13 system_u:system_r:kernel_t       SW<  [netns]
>>    14 system_u:system_r:kernel_t       SW   [oom_reaper]
>>    15 system_u:system_r:kernel_t       SW   [kworker/u8:1]
>>   124 system_u:system_r:kernel_t       SW<  [writeback]
>>   126 system_u:system_r:kernel_t       SW   [kcompactd0]
>>   127 system_u:system_r:kernel_t       SW<  [bioset]
>>   129 system_u:system_r:kernel_t       SW<  [kblockd]
>>   151 system_u:system_r:kernel_t       SW   [kworker/0:1]
>>   167 system_u:system_r:kernel_t       SW   [kswapd0]
>>   168 system_u:system_r:kernel_t       SW<  [vmstat]
>>   787 system_u:system_r:kernel_t       SW<  [ipv6_addrconf]
>>   798 system_u:system_r:kernel_t       S    syslogd
>>   805 system_u:system_r:kernel_t       S<   auditd
>>   808 system_u:system_r:kernel_t       SW   [kauditd]
>>   859 system_u:system_r:kernel_t       R    /bin/sm_manager
>>   861 system_u:system_r:kernel_t       S    /bin/sh
>>   880 system_u:system_r:kernel_t       R    ps -Z
>> /home # 
>> /home # 
>> /home # 
>> /home # ls
>> test      testfile
>> /home # cd  
>> ~ # ls
>> bin      etc      lib      lxc      proc     share    usr
>> dev      home     lib64    mnt      root     sys      var
>> drivers  init     linuxrc  mnth     sbin     tmp
>> ~ # cd /etc/
>> /etc # ls
>> audisp         gshadow        mtab           selinux        udhcpd.conf
>> audit          host.conf      pam.d          sestatus.conf  xattr.conf
>> default        hosts          passwd         shadow
>> environment    inittab        protocols      subgid
>> fstab          libaudit.conf  rc.d           subuid
>> group          lxc            security       sysconfig
>> /etc # cd 
>> ~ # ls
>> bin      etc      lib      lxc      proc     share    usr
>> dev      home     lib64    mnt      root     sys      var
>> drivers  init     linuxrc  mnth     sbin     tmp
>> ~ # 
>> ~ # 
>> ~ # ls -alZ bin/
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t              1620 Jan  4 23:29 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 arch -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ash -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t           1267040 Jan  4 23:29 bash
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t           1593984 Jan  4 23:29 busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 cat -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t              7664 Jan  4 23:29 cav_sh
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> chattr -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chgrp
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chmod
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chown
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 cp -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> cttyhack -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 date -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 dd -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t               200 Jan  4 23:29 delete_smapp.sh
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 df -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 dmesg
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 echo -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 egrep
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 false
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> fatattr -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> fdflush -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 fgrep
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 fsync
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> getopt -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 grep -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> gunzip -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 gzip -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> ionice -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> iostat -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 kill -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 link -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> linux32 -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> linux64 -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ln -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 login
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ls -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t              7736 Jan  4 23:29 lsmod
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t            128952 Jan  4 23:29 lspci
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mkdir
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mknod
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> mktemp -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 more -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mount
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> mountpoint -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 mv -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 nice -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 nuke -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 pidof
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> pipe_progress -> /bin/busybox
>> ~ # ls -alZ etc
>> drwxr-xr-x   11 root     root     system_u:object_r:root_t               560 Jan  6 12:37 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t               100 Jan  4 23:07 audisp
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                80 Jan  4 23:07 audit
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:17 default
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                97 Jan  4 23:17 environment
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               330 Jan  4 23:09 fstab
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                21 Jan  4 23:09 group
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                 9 Jan  4 23:09 gshadow
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                17 Jan  4 23:09 host.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                20 Jan  4 23:09 hosts
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                55 Jan  4 23:09 inittab
>> -rw-r-----    1 root     root     system_u:object_r:root_t               191 Jan  4 23:07 libaudit.conf
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:17 lxc
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 mtab -> /proc/mounts
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                40 Jan  4 23:08 pam.d
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                70 Jan  4 23:09 passwd
>> -rw-r--r--    1 root     root     system_u:object_r:root_t              6108 Jan  4 23:09 protocols
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                60 Jan  4 23:07 rc.d
>> drwxr-xr-x    4 root     root     system_u:object_r:root_t               260 Jan  4 23:18 security
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t               100 Jan  4 23:29 selinux
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               216 Jan  4 23:08 sestatus.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 shadow
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                19 Jan  6 12:37 subgid
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                19 Jan  6 12:37 subuid
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:07 sysconfig
>> -rw-r--r--    1 root     root     system_u:object_r:root_t              3048 Jan  4 23:09 udhcpd.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               642 Jan  4 23:13 xattr.conf
>> ~ # ls
>> bin      etc      lib      lxc      proc     share    usr
>> dev      home     lib64    mnt      root     sys      var
>> drivers  init     linuxrc  mnth     sbin     tmp
>> ~ # ^C
>> ~ # ls -alZ bin
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t              1620 Jan  4 23:29 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 arch -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ash -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t           1267040 Jan  4 23:29 bash
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t           1593984 Jan  4 23:29 busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 cat -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t              7664 Jan  4 23:29 cav_sh
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> chattr -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chgrp
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chmod
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 chown
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 cp -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> cttyhack -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 date -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 dd -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t               200 Jan  4 23:29 delete_smapp.sh
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 df -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 dmesg
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 echo -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 egrep
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 false
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> fatattr -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> fdflush -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 fgrep
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 fsync
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> getopt -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 grep -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> gunzip -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 gzip -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> ionice -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> iostat -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 kill -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 link -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> linux32 -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> linux64 -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ln -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 login
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ls -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t              7736 Jan  4 23:29 lsmod
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t            128952 Jan  4 23:29 lspci
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mkdir
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mknod
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> mktemp -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 more -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 mount
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> mountpoint -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 mv -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 nice -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 nuke -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 pidof
> -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> pipe_progress -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t             13397 Jan  4 23:29 pow_test
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> printenv -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 ps -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 pwd -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> resume -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 rev -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 rm -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 rmdir
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 sed -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t             61160 Jan  4 23:29 setpci
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> setpriv -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 sh -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 sleep
> -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t            298279 Jan  4 23:29 sm_manager
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t               781 Jan  4 23:29 smapp_manage.sh
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 stat -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 stty -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 su -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 sync -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 tar -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 touch
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 true -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> umount -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 uname
> -> /bin/busybox
>> -rwxr-xr-x    1 root     root     system_u:object_r:root_t              1340 Jan  4 23:29 upgrade_smapp.sh
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09
> usleep -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 vi -> /bin/busybox
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:09 watch
> -> /bin/busybox
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 zcat -> /bin/busybox
>> ~ # ls -alZ etc
>> drwxr-xr-x   11 root     root     system_u:object_r:root_t               560 Jan  6 12:37 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t               100 Jan  4 23:07 audisp
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                80 Jan  4 23:07 audit
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:17 default
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                97 Jan  4 23:17 environment
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               330 Jan  4 23:09 fstab
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                21 Jan  4 23:09 group
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                 9 Jan  4 23:09 gshadow
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                17 Jan  4 23:09 host.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                20 Jan  4 23:09 hosts
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                55 Jan  4 23:09 inittab
>> -rw-r-----    1 root     root     system_u:object_r:root_t               191 Jan  4 23:07 libaudit.conf
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:17 lxc
>> lrwxrwxrwx    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 mtab -> /proc/mounts
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                40 Jan  4 23:08 pam.d
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                70 Jan  4 23:09 passwd
>> -rw-r--r--    1 root     root     system_u:object_r:root_t              6108 Jan  4 23:09 protocols
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                60 Jan  4 23:07 rc.d
>> drwxr-xr-x    4 root     root     system_u:object_r:root_t               260 Jan  4 23:18 security
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t               100 Jan  4 23:29 selinux
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               216 Jan  4 23:08 sestatus.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                12 Jan  4 23:09 shadow
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                19 Jan  6 12:37 subgid
>> -rw-r--r--    1 root     root     system_u:object_r:root_t                19 Jan  6 12:37 subuid
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:07 sysconfig
>> -rw-r--r--    1 root     root     system_u:object_r:root_t              3048 Jan  4 23:09 udhcpd.conf
>> -rw-r--r--    1 root     root     system_u:object_r:root_t               642 Jan  4 23:13 xattr.conf
>> ~ # ls -alZ lib
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                60 Jan  4 23:07 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                60 Jan  4 23:07 modules
>> ~ # ls -alZ li
>> lib/     lib64/   linuxrc
>> ~ # ls -alZ li
>> lib/     lib64/   linuxrc
>> ~ # ls -alZ li64
>> ls: li64: No such file or directory
>> ~ # ls -alZ lib64
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t              1320 Jan  4 23:29 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            210624 Jan  4 23:29 ld-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 10 Jan 4 23:29
> ld.so.1 -> ld-2.16.so
>> -r-xr-xr-x 1 root root system_u:object_r:root_t 67824 Jan 4 23:29
> libBrokenLocale-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 23 Jan 4 23:29
> libBrokenLocale.so.1 -> libBrokenLocale-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             71182 Jan  4 23:29 libSegFault.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             68768 Jan  4 23:29 libanl-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 14 Jan 4 23:29
> libanl.so.1 -> libanl-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 16 Jan 4 23:29
> libasan.so.0 -> libasan.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            215896 Jan  4 23:29 libasan.so.0.0.0
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 18 Jan 4 23:29
> libatomic.so.1 -> libatomic.so.1.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             35056 Jan  4 23:29 libatomic.so.1.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t           1946544 Jan  4 23:29 libc-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:29
> libc.so.6 -> libc-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            200408 Jan  4 23:29 libcidn-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 15 Jan 4 23:29
> libcidn.so.1 -> libcidn-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             69416 Jan  4 23:29 libcrypt-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 16 Jan 4 23:29
> libcrypt.so.1 -> libcrypt-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             68920 Jan  4 23:29 libdl-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 13 Jan 4 23:29
> libdl.so.2 -> libdl-2.16.so
>> -r--r--r--    1 root     root     system_u:object_r:root_t            161643 Jan  4 23:29 libgcc_s.so.1
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 16 Jan 4 23:29
> libgomp.so.1 -> libgomp.so.1.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             87728 Jan  4 23:29 libgomp.so.1.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t           1006288 Jan  4 23:29 libm-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 12 Jan 4 23:29
> libm.so.6 -> libm-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             73221 Jan  4 23:29 libmemusage.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 19 Jan 4 23:29
> libmudflap.so.0 -> libmudflap.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            209120 Jan  4 23:29 libmudflap.so.0.0.0
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 21 Jan 4 23:29
> libmudflapth.so.0 -> libmudflapth.so.0.0.0
>> -r-xr-xr-x 1 root root system_u:object_r:root_t 209592 Jan 4 23:29
> libmudflapth.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            140688 Jan  4 23:29 libnsl-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 14 Jan 4 23:29
> libnsl.so.1 -> libnsl-2.16.so
>> -r-xr-xr-x 1 root root system_u:object_r:root_t 70352 Jan 4 23:29
> libnss_compat-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 21 Jan 4 23:29
> libnss_compat.so.2 -> libnss_compat-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             71056 Jan  4 23:29 libnss_db-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 17 Jan 4 23:29
> libnss_db.so.2 -> libnss_db-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             68520 Jan  4 23:29 libnss_dns-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 18 Jan 4 23:29
> libnss_dns.so.2 -> libnss_dns-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             72024 Jan  4 23:29 libnss_files-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 20 Jan 4 23:29
> libnss_files.so.2 -> libnss_files-2.16.so
>> -r-xr-xr-x 1 root root system_u:object_r:root_t 69248 Jan 4 23:29
> libnss_hesiod-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 21 Jan 4 23:29
> libnss_hesiod.so.2 -> libnss_hesiod-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             70800 Jan  4 23:29 libnss_nis-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 18 Jan 4 23:29
> libnss_nis.so.2 -> libnss_nis-2.16.so
>> -r-xr-xr-x 1 root root system_u:object_r:root_t 71040 Jan 4 23:29
> libnss_nisplus-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 22 Jan 4 23:29
> libnss_nisplus.so.2 -> libnss_nisplus-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             70402 Jan  4 23:29 libpcprofile.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            143640 Jan  4 23:29 libpthread-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 18 Jan 4 23:29
> libpthread.so.0 -> libpthread-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            138480 Jan  4 23:29 libresolv-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 17 Jan 4 23:29
> libresolv.so.2 -> libresolv-2.16.so
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             71296 Jan  4 23:29 librt-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 13 Jan 4 23:29
> librt.so.1 -> librt-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 15 Jan 4 23:29
> libssp.so.0 -> libssp.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             11488 Jan  4 23:29 libssp.so.0.0.0
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 19 Jan 4 23:29
> libstdc++.so.6 -> libstdc++.so.6.0.17
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t           1198520 Jan  4 23:29 libstdc++.so.6.0.17
>> -rw-r--r-- 1 root root system_u:object_r:root_t 2436 Jan 4 23:29
> libstdc++.so.6.0.17-gdb.py
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             70256 Jan  4 23:29 libthread_db-1.0.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 19 Jan 4 23:29
> libthread_db.so.1 -> libthread_db-1.0.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 17 Jan 4 23:29
> libubsan.so.0 -> libubsan.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t            606176 Jan  4 23:29 libubsan.so.0.0.0
>> -r-xr-xr-x    1 root     root     system_u:object_r:root_t             68344 Jan  4 23:29 libutil-2.16.so
>> lrwxrwxrwx 1 root root system_u:object_r:root_t 15 Jan 4 23:29
> libutil.so.1 -> libutil-2.16.so
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t              1440 Jan  4 23:29 octeon2
>> ~ # ls -alZ drivers
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                60 Jan  4 23:29 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> -rw-r--r--    1 root     root     system_u:object_r:root_t             14558 Jan  4 23:29 pow_drv.ko
>> ~ # 
>> ~ # 
>> ~ # ls -alZ tmp
>> drwxr-xr-x    2 root     root     system_u:object_r:root_t                40 Jan  4 23:09 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> ~ # 
>> ~ # 
>> ~ # 
>> ~ # ls /
>> bin      etc      lib      lxc      proc     share    usr
>> dev      home     lib64    mnt      root     sys      var
>> drivers  init     linuxrc  mnth     sbin     tmp
>> ~ # ls -alZ var/
>> drwxr-xr-x    6 root     root     system_u:object_r:root_t               120 Jan  6 12:37 .
>> drwxr-xr-x   20 root     root     system_u:object_r:root_t               460 Jan  6 12:38 ..
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                60 Jan  4 23:17 cache
>> drwxr-xr-x    4 root     root     system_u:object_r:root_t                80 Jan  4 23:17 lib
>> drwxr-xr-x    3 root     root     system_u:object_r:root_t                80 Jan  6 12:37 log
>> drwxr-xr-x    4 root     root     system_u:object_r:root_t               140 Jan  6 12:37 run
>> ~ # 
>> CTRL-A Z for help |115200 8N1 | NOR | Minicom 2.6.2 | VT102 |
> Offline
>>
>>

-- 
gpg --locate-keys dominick.grift@xxxxxxxxxxx
Key fingerprint = FCD2 3660 5D6B 9D27 7FC6  E0FF DA7E 521F 10F6 4098
https://sks-keyservers.net/pks/lookup?op=get&search=0xDA7E521F10F64098
Dominick Grift
[Index of Archives]     [Selinux Refpolicy]     [Linux SGX]     [Fedora Users]     [Fedora Desktop]     [Yosemite Photos]     [Yosemite Camping]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux