FC4 update and SELINUX
Stephen Smalley
sds at tycho.nsa.gov
Mon Nov 7 19:57:33 UTC 2005
On Mon, 2005-11-07 at 14:53 -0500, Richard Irving wrote:
> As, I just got around to testing FC4 on an AMD64,
> with it set to "permissive" it -all- works..
> with NO AVC messages...
>
> and with it set to "enforcing", it stops
> working ...
> with NO AVC messages.
If there are truly no audit messages (in /var/log/audit/audit.log), then
install selinux-policy-targeted-sources if you don't already have them,
and then do:
cd /etc/selinux/targeted/src/policy
make clean enableaudit load
<run your tests>
cd /etc/selinux/targeted/src/policy
make clean load
Then look again at audit.log.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list