Re: Backup server question

>On Thu, 2005-04-21 at 10:54 -0400, mroselinux(a)eastgranby.k12.ct.us >wrote: > > >>We have a FC3 server running samba, dhcpd, and named (for internal names >>only). Each night, a backup server to the primary runs rsync to >>download >>changed/new files. >> >>This is a vacation week at our high school and I tried our backup plan >>for >>the first time since upgrading to FC3. When bringing up the backup >>server >>as primary, I ran into a security problem with dhcpd (dhcpd: Can't open >>lease database /var/lib/dhcp/dhcpd.leases: Permission denied). I issued >>a >>setforce 0 command and restarted dhcpd and all was ok. I then again >>stopped dhcpd, issued a setenforce 1 command, restarted dhcpd and again >>all was ok. >> >>So, should I be running fixfiles each night at the end of the rsync >>script? Or is there a better solution that someone with expertise can >>suggest? >> >> >I think that the FC4/development tree includes a patch to rsync to allow >preservation of extended attributes (which would include the SELinux >attributes). Hence, you might try building the development rsync SRPM >on FC3 and trying it there (using the -X option). You need the updated >rsync on both the client and server. Naturally, you'd want to test it >out somewhere other than your production machine first. > >-- >Stephen Smalley <sds(a)tycho.nsa.gov&gt; >National Security Agency > >-- >fedora-selinux-list mailing list &gt;fedora-selinux-list(a)redhat.com >http://www.redhat.com/mailman/listinfo/fedora-selinux-list > > > Stephen - Thanks for the info, but I don't think that I have the capability to build rsync. I will look forward to it. But in the meantime, is running fixfiles at the end of the rsync script an ok approach? Mark -- fedora-selinux-list mailing list fedora-selinux-list(a)redhat.com http://www.redhat.com/mailman/listinfo/fedora-selinux-list