dhclient-script avc error f7
Daniel J Walsh
dwalsh at redhat.com
Tue Oct 2 13:05:13 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Tim Fenn wrote:
> I recently upgraded a machine from FC6 to F7, and I used to use a
> /etc/dhclient-exit-hooks script to call some iptables functions after
> bringing up my external interface. This used to work on FC6 as long
> as I setsebool -P dhcpc_disable_trans 1, but the policy in F7 no
> longer contains such a boolean, so dhclient-script is prevented from
> getattr/executing iptables. Is there a simple fix to this, or do I
> need to write a policy and compile it? If the latter, any pointers on
> what the policy file should contain?
>
> Thanks for any help,
> tim
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
You have inspired me to blog.
http://danwalsh.livejournal.com/13116.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFHAkIJrlYvE4MpobMRAm6CAJ4mD2Y6aoOiZhJ639TOEX1//YR5+QCgpViC
OwQmR50bFARj5is4LLiquPI=
=0C8V
-----END PGP SIGNATURE-----
More information about the fedora-selinux-list
mailing list