avc denied from /.autorelabel
Russell Coker
russell at coker.com.au
Tue Dec 7 05:33:10 UTC 2004
On Monday 06 December 2004 22:13, Richard Hally <rhallyx at mindspring.com>
wrote:
> Included below are the avc denied messages from trying to do an
> autorelabel while in enforcing mode with the strict policy.
> there are also messages about line 64 of rc.sysinit: permission denied.
> Looks like sysinit(initrc_t) is trying to write to /selinux/enforce with
> out being allowed to do so.
can_setenforce(initrc_t)
We need to add the above to initrc.te inside the ifdef(`distro_redhat' part.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
More information about the fedora-selinux-list
mailing list