targeted policy: crond_t now invalid for initrc_t ?
Daniel J Walsh
dwalsh at redhat.com
Wed Jan 26 20:03:53 UTC 2005
Hongwei Li wrote:
>>Tom London wrote:
>>
>>
>>
>>>On Wed, 26 Jan 2005 12:08:51 -0500, Stephen Smalley <sds at epoch.ncsc.mil>
>>>wrote:
>>>
>>>
>>>
>>>
>>>>The error message isn't a permission denial; it is an invalid context,
>>>>e.g. the role isn't authorized for the type in the targeted policy. Got
>>>>a 'role system_r types system_crond_t;' anywhere? Likely just a failure
>>>>to transfer over all of the necessary bits from the strict policy.
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>Got it. The strict policy has this line, targeted does not.
>>>
>>>tom
>>>
>>>
>>>
>>>
>>Added in selinux-policy-targeted-1.21.3-5
>>
>>--
>>fedora-selinux-list mailing list
>>fedora-selinux-list at redhat.com
>>http://www.redhat.com/mailman/listinfo/fedora-selinux-list
>>
>>
>>
>
>Where to get selinux-policy-targeted-1.21.3-5? When I run yum in my fc3
>system, it lists only:
>
>Available Packages
>selinux-doc.noarch 1.14.1-1 base
>selinux-policy-strict.noarch 1.19.10-2
>updates-released
>selinux-policy-strict-sources.noarch 1.19.10-2
>updates-released
>selinux-policy-targeted.noarch 1.17.30-2.73
>updates-released
>selinux-policy-targeted-sources.noarch 1.17.30-2.73
>updates-released
>
>Thanks!
>
>Hongwei Li
>
>--
>fedora-selinux-list mailing list
>fedora-selinux-list at redhat.com
>http://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
>
No you have the correct policy. 1.21 and later are for rawhide, which
will be FC4.
You are up to date on policy so now you need to do the restorecon stuff.
Dan
More information about the fedora-selinux-list
mailing list