FC2 useradd in chroot on FC5 host with SELinux
Paul Howarth
paul at city-fan.org
Wed Aug 9 22:05:49 UTC 2006
On Wed, 2006-08-09 at 15:41 -0400, Stephen Smalley wrote:
> On Wed, 2006-08-09 at 18:28 +0100, Paul Howarth wrote:
> > Supposing I just remove the pam_selinux from /etc/pam.d/su altogether?
> > Is that likely to break anything? Any other way of persuading an FC2
> > system that SELinux is disabled?
>
> Removing it should be fine (and has already happened in FC5). I'm not
> clear on the cause though - pam_selinux returns immediately with
> PAM_SUCCESS if is_selinux_enabled() returns <= 0.
It got further with that line removed, and now hangs when trying to run
rpm as the user "mockbuild" that was added by "useradd". This appears to
be the first chroot command that's not running as root. It's not obvious
to me what it's waiting for.
Mock root log, with straces of all chroot commands attached.
Paul.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: fc2-root.log.bz2
Type: application/x-bzip
Size: 11775 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20060809/5c3b506f/attachment.bin>
More information about the fedora-selinux-list
mailing list