SELinux silently disabled on boot under 2.6.14/2.6.14.2 on FC3 system ?
Stephen Smalley
sds at tycho.nsa.gov
Tue Nov 15 11:33:56 UTC 2005
On Tue, 2005-11-15 at 12:21 +0700, rhp wrote:
> Would there be any benefit in installing the rawhide /sbin/init on a
> FC3 box ? I'm rather ambivalent about upgrading to FC4 at this point
> given FC5 is scheduled for February.
If you do, you'll need the rawhide libselinux and libsepol as well.
> FWIW: I did try booting 'enforcing' with 2.6.14 earlier just to see
> what would happen and, if memory serves, I got a kernel panic on 'no
> policy loaded' but I didn't pursue it as I got distracted by the
> 'xattr red herring'
Yes, that is the correct behavior for enforcing mode when no policy can
be loaded. Still not sure why init didn't display any kind of message
in permissive mode about not being able to load the policy.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list