MCS

Gene Czarcinski gene at czarc.net
Mon Oct 31 00:34:44 UTC 2005


OK, I am starting to work with MCS.

First I added some categories to setrans.conf:
s0:c1=moonbeam
s0:c2=test2
s0:c3=test3


Then I added a user to seusers:
gc:user_r:s0:c0.c15

Then I logged into that user.

All new (written to?) files get created with s0:c0.c15 like:
-rw-r--r--  gc       gc       user_u:object_r:user_home_t:s0:c0.c15 
bookmarks1.html

including some in /tmp:
drwx------  gc       gc       user_u:object_r:tmp_t:s0:c0.c15  orbit-gc
drwx------  gc       gc       user_u:object_r:tmp_t:s0:c0.c15  gconfd-gc


Shouldn't they default to nothing and only get set if I do a chcat?

BTW, I seem to remember that there were some gripe messages during bootup 
about the files in /tmp ... nothing in /var/log/* or dmesg.

Bug, feature, or what am I doing wrong?

Gene





More information about the fedora-selinux-list mailing list