I noticed that the contexts for the logrotated cron log files are 'restored' by fixfiles/restorecon from system_u:object_r:crond_log_t to system_u:object_r:var_log_t .
Would it make sense to change crond.fc from: /var/log/cron -- system_u:object_r:crond_log_t to something like: /var/log/cron.* -- system_u:object_r:crond_log_t tom
On Tue, 8 Jun 2004 08:34, Tom London selinux@comcast.net wrote:
I noticed that the contexts for the logrotated cron log files are 'restored' by fixfiles/restorecon from system_u:object_r:crond_log_t to system_u:object_r:var_log_t .
Would it make sense to change crond.fc from: /var/log/cron -- system_u:object_r:crond_log_t to something like: /var/log/cron.* -- system_u:object_r:crond_log_t
Yes it makes sense. That's been in my tree for a while, it has to be merged in.
selinux@lists.fedoraproject.org