Changing policies, using enforcing=0 the first time
Forrest Taylor
ftaylor at redhat.com
Fri Feb 8 14:42:51 UTC 2008
I am running into a strange occurrence running RHEL5.1 with an updated
policy (2.4.6-106.el5_1.3). By default, it runs the targeted policy. I
install the mls and the strict policy and touch /.autorelabel. The
first time that I boot to one of these other policies, I get a kernel
panic, and I have to use enforcing=0. The strange thing is that I can
then go back and forth between any policy without setting permissive
mode--that is, I only have to set enforcing=0 the first time that I make
a policy change, but subsequent times it is not required. Does fixfiles
change something the first time that allows the relabel to work
subsequent times in enforcing mode? Any thoughts?
Thanks,
Forrest
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20080208/f2ecc378/attachment.sig>
More information about the fedora-selinux-list
mailing list