home directory problems with Fedora 8
Daniel J Walsh
dwalsh at redhat.com
Mon Dec 10 20:42:48 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Tony Molloy wrote:
> On Thursday 06 December 2007 17:49, Matthew Gillen wrote:
>> Chris Howard wrote:
>>> I have previously existing home directories under /u01/home.
>>> I did this because upgrading from FC6 to Fedora 7 caused me trouble
>>> and I want to avoid having to recreate my home directory. So I copied
>>> the whole system into /u01 before doing a fresh Fedora 8 install. I
>>> do not have a separate home-only partition.
>>>
>>> SELinux prevents me from making a symbolic link like this:
>>>
>>> /home--> /u01/home or like this
>>>
>>> /home/chris--> /u01/home/chris.
>> I wouldn't do symlinks like that unless you have some strange reason to.
>> Just have /etc/passwd point to the actual directories under /u01/home.
>>
>>> If I setup a dummy user with home at /home/chris, then
>>> edit /etc/passwd to change the home to /u01/home/chris... that doesn't
>>> work either.
>>>
>>> nor if I create a new user like so:
>>>
>>> useradd -d /u01/home/pete pete
>>>
>>> Is there something magic about the string '/home' ?
>>> that keeps me from creating home directories anywhere else?
>>>
>>> I'd really love to keep from smashing /home on every OS reload.
>>>
>>> For now I have SELinux in Permissive mode so I can at least use the
>>> system.
>> Here's how I /think/ it works:
>> a) If you've got an empty /u01/home, and you want to add new users, do
>> this: Set the type of /u01/home to home_root_t:
>> chcon -t home_root_t /u01/home
>> and then useradd -d /u01/home/pete will do the right thing.
>>
>> b) Supposing you already have some use home dirs there (ie the homeidrs in
>> /etc/passwd point to /u01/home/*), I think you can just run 'genhomedircon'
>> and then run:
>> restorcon -R -v /u01/home
>>
>> In the case of (b), it doesn't hurt to do the chcon operation first, but I
>> don't think it's necessary.
>>
>> (note: I'm not an expert myself, but if these steps don't work for you,
>> they should at least point you in the right direction).
>>
>> HTH,
>> Matt
>>
>> --
>> fedora-selinux-list mailing list
>> fedora-selinux-list at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
>
> I had similar problems after a fresh install of F8 last week messed up
> my /users directory. After an off-list discussion with Daniel Walsh he traced
> it to a problem in libsemanage and released a new libsemanage to F8-testing
> libsemanage-2.0.12-2.fc8.
>
> Here is a snippet from his e-mail
>
> There is a bug in libsemanage that is preventing proper labeling. I
> have just released libsemanage-2.0.12-2.fc8 to fedora-testing.
>
> If you install this package, you can execute
>
> #semodule -B
> #restorecon -R -v /users
> and it should clean up the labeling.
>
> You can check what semodule and restorecon do in the man pages.
>
> Hope this helps,
>
> Tony
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
There is a bug in libsemanage that is preventing proper labeling of
non-default homedirectories. This is in testing right now and should be
released to updates soon. I requested the release over the weekend.
libsemanage-2.0.12-2.fc8
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFHXaTIrlYvE4MpobMRAnRbAKDKBfvgz8Y1kY3wYOlYFYpetWfsJQCfVmxv
MCD/S/73YsGH2HnEStQkWKw=
=227O
-----END PGP SIGNATURE-----
More information about the fedora-selinux-list
mailing list