unable to access a mounted partition as guest
Daniel J Walsh
dwalsh at redhat.com
Fri Nov 8 18:23:33 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 11/08/2013 11:32 AM, Lakshmipathi.G wrote:
> Setting appropriate context to /common_pool resolved my problem :) .Thanks
> a lot Mark!.
>
> On 8 November 2013 21:59, <m.roth at 5-cent.us <mailto:m.roth at 5-cent.us>>
> wrote:
>
> Lakshmipathi.G wrote:
>>>
>>> ls -laZ /common_pool?
>>>
>>> Thanks for the reply. It shows this :
>>
>> $ls -ldaZ /common_pool/ drwxrwsrwx+ root betausers
>> system_u:object_r:default_t:s0 /common_pool/
>>
>> Is that the problem?
>
> I suspect that selinux in enforcing mode doesn't like just anyone getting
> into default_t. You should semanage fcontect -a -t <an appropriate context
> type> "/common_pool(/.*)?" restorecon -Rv /common_pool
>
> mark
>
>
>
>
> -- ---- Cheers, Lakshmipathi.G FOSS Programmer. www.giis.co.in
> <http://www.giis.co.in>
>
>
> -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
http://danwalsh.livejournal.com/28027.html?thread=329339
Covers this.
"Directories created under / get a label of default_t, by default. All
files/directories created in these top level directories then inherit the
default_t label. Confined domains can not read default_t since we do not know
the value of the data created in these directories. Therefore is is more
secure to deny by default."
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlJ9LCUACgkQrlYvE4MpobOuDACfWOkDdRA2Eig7ttyVBq1vCVJp
YUQAniVQXh1wH/v9L/Vd2jtynGMb3RH2
=TU4k
-----END PGP SIGNATURE-----
More information about the selinux
mailing list