Request
Stephen Smalley
sds at epoch.ncsc.mil
Wed Dec 8 17:49:55 UTC 2004
On Wed, 2004-12-08 at 12:43, Daniel J Walsh wrote:
> Turn on
> Allow rc scripts to run unconfined, including any daemon started by an
> rc script that does not have a domain transition explicitly defined.
> Allow xinetd to run unconfined, including any services it starts that do
> not have a domain transition explicitly defined.
>
> Now try to restart the daemon that is broken.
Alternatively, couldn't he just chcon -t unconfined_exec_t
/path/to/daemon and re-start it? Then only that daemon will run
unconfined, not the rc script or inetd or any other daemon.
--
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency
More information about the fedora-selinux-list
mailing list