Hi Tod<br><br>
<div>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>
<div><span></span></div>
<div>
<blockquote></blockquote></div>Hi David,<br><br>Do hope I indeed was helpful.</div></blockquote>
<div> </div>
<div>Yes you were very helpful. I didn't know how to check SElinux labels. I am quite confused about how it works. I have downloaded the manual which comes with RHEL 4 to read about it. I've set it to permissive mode as suggested by Stephen Smalley and would have a look at the logs later. I'll definitely enable it again after getting a good understanding of its security model.
</div><br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>The end of Stephen Smalley's response I would spend some time on (might well explain the hotplug thing). </div></blockquote>
<div> </div>
<div>I know that tmpfs is a Virtual filesystem managed by the kernel. My kernel has been updated but I don't know whether this may have been the cause of this avc denied and preventing my system from booting. Then would a touch ./autorelabel relabel it? Kernel version could also be the problem since it manages tmpfs. I don't know yet how to check the policy version applied to my system.
</div>
<div> </div>
<div> Apparently other users of FC have also noted this avc hotplug denied. You mentioned "scaling_governor:userspace for hotplug. Is that what I should get for hotplug label? </div>
<div> </div>
<div>Have you used fixfiles or touch /.autorelabel to relabel the entire filesystem? I am thinking whether the new compilation and installation of tcp_wrappers and openssh can cause problems with the SElinux security policy applied to the versions integrated with FC4?
<br> </div>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>You might also consider doing an update.<br><br>Good hunting!</div></blockquote>
<div> </div>
<div>Yes indeed, there are lots to learn about SElinux security model.</div><br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div> </div>
<div><span><br>Tod</span></div></blockquote>
<div> </div>
<div> </div>
<div>Rgds</div>
<div> </div>
<div>David</div><br> </div><br><br clear="all">