mount.cifs and credentials file
Paul Howarth
paul at city-fan.org
Wed Mar 21 11:22:05 UTC 2007
Dawid Gajownik wrote:
> Dnia 03/16/2007 02:18 PM, Użytkownik Paul Howarth napisał:
>> Looking at the policy sources, I think it may be working for me
>> because I have the allow_mount_anyfile boolean set
>
> You're right, changing this boolean to 'on' allowed to mount this
> network share on system boot. Is there any other way to resolve this
> problem? I would like not to relax to much SELinux policy.
Alternative approach. Put the credentials file directly under /etc (or
some new, private directory within /etc) and run "restorecon" on it,
which should label it etc_t. Since /etc/fstab is etc_t and mount must be
able to read *that*, it should be able to read the credentials file too.
Paul.
More information about the fedora-selinux-list
mailing list