-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 11/13/2012 11:37 AM, Erinn Looney-Triggs wrote:
Been trying to figure this one out for a bit.
erinn@thin-mint ~ $ id -Z guest_u:guest_r:oddjob_mkhomedir_t:s0
Fine, well not fine, but given that the homedir was created by oddjob since
this is an IPA client, it makes sense.
However:
erinn@thin-mint ~ $ sudo semanage login -l
Login Name SELinux User MLS/MCS Range
__default__ unconfined_u s0-s0:c0.c1023
erinn unconfined_u s0-s0:c0.c1023
root unconfined_u s0-s0:c0.c1023
system_u system_u s0-s0:c0.c1023
Ok so I should be an unconfined-U according to this mapping, right?
Is this perhaps SSSD interfering? This F18 client is running against a RHEL
6.3 IPA server, fully updated. I tried to work with the SELinux mappings in
IPA, however, I was informed that as of 6.3 they are almost totally broken
and to wait for the next release.
Anyway, any ideas?
-Erinn
-- selinux mailing list selinux(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/selinux
Well O have no idea, first make sure your login program has the correct label.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla -
http://www.enigmail.net/
iEYEARECAAYFAlCilDUACgkQrlYvE4MpobOmBQCdE4zi7RIAsDS8Gsi1l9Ltxyn/
vLAAoLztiKhmZ/bC6246SOiBr1nk//A5
=Fmau
-----END PGP SIGNATURE-----