mount --bind and autorelabel versus restorecon
Bruno Wolff III
bruno at wolff.to
Tue Feb 17 16:11:40 UTC 2009
On Tue, Feb 17, 2009 at 15:26:02 +0100,
Per Sjoholm <Per.t.Sjoholm at flysta.net> wrote:
>
> It's possible to construct file context and they will most likely NOT
> work reliable for both autorelabel and restorecon
You can use semanage to specify path patterns that should receive specific
labels. This will allow relables and restorecon to properly label the
files and/or directories. The default is for new files in a directory
to get their context label from the directory, so you normally don't have
to relabel files after creating them if the directory they are in has the
correct context.
More information about the fedora-selinux-list
mailing list