using tmpfs for /tmp and selinux

Stephen Smalley sds at
Fri Mar 25 14:19:43 UTC 2005

On Fri, 2005-03-25 at 15:15 +0100, dragoran wrote:
> does this mean that adding restorecon /tmp in rc.sysinit would solve my 
> problem?
> I am using selinux-policy-targeted-1.17.30-2.90 is
> allow tmpfile tmpfs_t:filesystem associate;
> already done in this policy? or do I have to add it myself? I have policy sources installed but I don't know in which file I should add this line before rebuilding the policy.

It is in the rawhide policy, doesn't appear to be in the latest policy
for FC3 yet.  You can temporarily put it
in /etc/selinux/targeted/src/policy/domains/misc/local.te and reload
your policy for now.  The diff Dan proposed for rc.sysinit on selinux
list is below.

Stephen Smalley <sds at>
National Security Agency
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rc.sysinit.diff
Type: text/x-patch
Size: 432 bytes
Desc: not available
URL: <>

More information about the fedora-selinux-list mailing list