[policy-sources-1.8-10] tmpwatch ACLs.
Aleksey Nogin
aleksey at nogin.org
Sun Mar 14 06:36:02 UTC 2004
On 13.03.2004 20:47, Russell Coker wrote:
> If you have such files existing in /tmp then you have a problem.
You know, I am starting to think that they probably stayed around across
a setfiles invocation, and it would not happen with a stable policy.
Sorry about the confusion.
> Allowing an
> unlink of file_t files is probably OK, I'll add that to my tree.
Would it be a better idea to change how file_contexts marks files in
/tmp and see whether that is sufficient?
--
Aleksey Nogin
Home Page: http://nogin.org/
E-Mail: nogin at cs.caltech.edu (office), aleksey at nogin.org (personal)
Office: Jorgensen 70, tel: (626) 395-2907
More information about the fedora-selinux-list
mailing list