Everything got broken. selinux-policy-targeted-1.17.30-2.90
Eric Paris
eparis at redhat.com
Wed Mar 30 15:11:42 UTC 2005
If fixfiles doesn't fix that labeling problem on /etc, do you have a
user defined whose home directory is in /etc/username? I'm not sure if
the genhomedircon that fixed this situation made it into FC3 yet.
If you do have a user with a homedirectory in /etc/username, fix your
file_contexts so that /etc is not labeled wrong and try fixfiles
again.....
Eric
On Wed, 2005-03-30 at 08:36, Stephen Smalley wrote:
> On Wed, 2005-03-30 at 00:56 -0500, Omri Schwarz wrote:
> > Right now I have a machine that is using selinux-policy-targeted-1.17.30-2.90.n
> > oarch.rpm, and I suffer from the same errors:
> >
> > # /usr/sbin/getenforce
> > getenforce: getenforce() failed
> >
> > ]# /usr/sbin/getsebool -a
> > getsebool: booleans.c:48: security_get_boolean_names: Assertion `selinux_mnt'
> > failed.
> > Aborted
> >
> > # cat /selinux/enforce
> > 1
>
> What does 'id' show? What is in your /etc/selinux/config file?
>
> > Mar 30 00:55:15 HOST kernel: audit(1112162115.873:0): avc: denied { search }
> > for pid=6178 exe=/sbin/portmap name=etc dev=hda3 ino=229377
> > scontext=root:system_r:portmap_t tcontext=system_u:object_r:home_root_t
> > tclass=dir
>
> /etc certainly shouldn't be labeled home_root_t. /sbin/fixfiles restore?
More information about the fedora-selinux-list
mailing list