$ sandbox -t sandbox_min_t htop ERROR: could not find datum for type sandbox_t /bin/sandbox: Sandbox Policy is currently disabled. You need to enable the policy by executing the following as root # semodule -e sandbox $ su -c 'semodule -l | grep sand' sandbox 1.0.0 Disabled sandboxX 1.0.0 PS: htop used as example there After update\reinstall selinux-policy-targeted package this module is disabled again. In F17 this module was enabled. The question is that now this module will be always disabled by default, or it is a temporary solution? -- Fl@sh