about restarting services and user domains F14
Gabriel Ramirez
gabriello.ramirez at gmail.com
Tue Apr 5 01:19:54 UTC 2011
Hi,
I have a small problem or I didn't find the correct info, in my Fedora
14 x86_64 and i686 machines when I restart a service by:
# service postfix restart
or
$ sudo service postfix restart
always the process runs under unconfined_u
as per ps axZ | grep postfix
unconfined_u:system_r:postfix_master_t:s0 26602 ? Ss 0:00
/usr/libexec/postfix/master
unconfined_u:system_r:postfix_pickup_t:s0 26604 ? S 0:00 pickup -l -t
fifo -u
unconfined_u:system_r:postfix_qmgr_t:s0 26605 ? S 0:00 qmgr -l -t
fifo -u
and not under system_u as after a reboot
system_u:system_r:postfix_master_t:s0 1706 ? Ss 0:11
/usr/libexec/postfix/master
system_u:system_r:postfix_qmgr_t:s0 1717 ? S 0:05 qmgr -l -t
fifo -u
system_u:system_r:postfix_master_t:s0 1822 ? S 0:01 tlsmgr -l -t
unix -u
system_u:system_r:postfix_pickup_t:s0 26061 ? S 0:00 pickup -l -t
fifo -u
what can use to restart a service with the correct user context?
also sometimes I edit a file in /etc and after saving the context change
from system_u to unconfined_u how can prevent that??,
thanks
Gabrielo
More information about the selinux
mailing list