hi guys
I wonder if it possible to make a mount point or it's sub-folder to mimic fcontext of the "/" itself and have "restorecond" do labeling? This what I wonder must not be a new notion, eg - have a mount point /devel and duplicate partial structure of "/" inside, usually it would be "var", "usr", "run" and lastly have "restorecond" do the fcontext labeling, eg. /devel/var/www/html etc.
Would anybody have any thoughts to share? many thanks, L.
On 1/28/21 12:18 AM, lejeczek wrote:
I wonder if it possible to make a mount point or it's sub-folder to mimic fcontext of the "/" itself and have "restorecond" do labeling? This what I wonder must not be a new notion, eg
- have a mount point /devel and duplicate partial structure of "/"
inside, usually it would be "var", "usr", "run" and lastly have "restorecond" do the fcontext labeling, eg. /devel/var/www/html etc.
Maybe use the equal option of semanage fcontext? Configure /devel to be equal to / (rootfs).
semanage fcontext -a --equal / /devel
- Thomas
selinux@lists.fedoraproject.org
-
lejeczek -
Thomas Mueller