Everything got broken. selinux-policy-targeted-1.17.30-2.90
Daniel J Walsh
dwalsh at redhat.com
Wed Mar 30 17:05:07 UTC 2005
Omri Schwarz wrote:
>>On Wed, 2005-03-30 at 11:25 -0500, Omri Schwarz wrote:
>>
>>
>>>drwxr-xr-x root root system_u:object_r:home_root_t etc
>>>
>>>
>>Still wrong. I take it that you have locally customized your policy
>>sources? Combined with the old genhomedircon and the fact that certain
>>
>>
>
>Negative. At the very minimum, I have not intentionally
>customized the policy sources, although I wonder whether the
>Redhat Package Manager has in effect done that for me.
>
>
>
>>users like news have home directories under /etc in /etc/passwd, this
>>could be the problem.
>>
>>
>
># grep etc /etc/passwd
>news:x:9:13:news:/etc/news:
>ntp:x:38:38::/etc/ntp:/sbin/nologin
>privoxy:x:73:73::/etc/privoxy:/sbin/nologin
>xfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologin
>
>None of these accounts have an inherent need for a homedir,
>unless I am mistaken.
>
>As you can see, no real users with directories in homedirs in /etc/,
>but this system does get directory service from a legacy NIS server
>that lives in Solaris land and cares nothing for such conventions
>as real accounts starting in 500.
>
>I've just wiped the news account (no need for it), changed homedirs
>for the remaining three, and am running fixfiles restore.
>
># /sbin/fixfiles restore
>/usr/sbin/setfiles: conflicting specifications for /etc/services and /var/spool/postfix/etc/services, using system_u:object_r:etc_t.
>(dum dee dum).
>
>Update to follow come next reboot.
>
>--
>fedora-selinux-list mailing list
>fedora-selinux-list at redhat.com
>http://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
>
For now hand edit your
/etc/selinux/targeted/contexts/files/file_contexts file and remove the
records
about /etc and home_roots.
And then restorecon -R -v /etc
What is UID_MIN set to in /etc/login.defs?
Dan
--
More information about the fedora-selinux-list
mailing list