getpwnam and SELinux
Brian Ginn
BGinn at symark.com
Wed Jul 8 17:48:17 UTC 2009
Thanks again!
I got that last problem solved. My confined program now works on RHEL5.3.
Fedora 9, on the other hand, always returns x, even when not enforcing and not confined. That doesn't seem to be an SELinux issue.
-Brian
-----Original Message-----
From: Stephen Smalley [mailto:sds at tycho.nsa.gov]
Sent: Tuesday, July 07, 2009 12:24 PM
To: Brian Ginn
Cc: 'fedora-selinux-list at redhat.com'; Joshua Brindle
Subject: RE: getpwnam and SELinux
On Tue, 2009-07-07 at 12:04 -0700, Brian Ginn wrote:
> Thanks for the suggestion. My program still doesn't work yet, but I notice that /var/log/messages has:
>
> Jul 6 12:43:55 localhost kernel: security: context unconfined_u:unconfined_r:t_getpw_t:s0-s0:c0.c1023 is invalid
>
> What would make this invlaid?
user-role, role-type, or user-range association is not authorized by the
policy.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list