hotplug_t?
Stephen Smalley
sds at tycho.nsa.gov
Tue Aug 1 13:16:04 UTC 2006
On Tue, 2006-08-01 at 14:51 +0200, Axel Thimm wrote:
> Does the following output help? Looks like anything called from sshd
> gets into hotplug_t. The main sshd process runs under
> system_u:system_r:kernel_t.
sshd running in kernel_t is the problem; that should never happen (init
transitions to init_t, then everything flows from it; nothing should
ever transition back into kernel_t). Only kernel threads should have
kernel_t (init will start life as kernel_t but then transition; usermode
helpers like modprobe and hotplug should transition upon the exec).
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list