Hi,
If I have in /etc/passwd
splunk:x:101:101:Splunk User:/opt/splunkdashboards/var/lib/splunk:/sbin/ nologin
and in splunkdashboards.fc:
/opt/splunkdashboards/var/lib(/.*)? gen_context(system_u:object_r: splunkdashboards_var_lib_t,s0)
then following label:
guest_u:object_r:usr_home_dir_t.
If in /etc/passwd
splunk:x:101:101:Splunk User:/nonexistant:/sbin/nologin
then label as expected.
I see Apache and Postfix have homedirs in various directories and are labelled correctly.
Please why?
Thank you.
On Mon, 2013-09-02 at 19:53 +0200, Robert Gabriel wrote:
Hi,
If I have in /etc/passwd
splunk:x:101:101:Splunk User:/opt/splunkdashboards/var/lib/splunk:/sbin/ nologin
and in splunkdashboards.fc:
/opt/splunkdashboards/var/lib(/.*)? gen_context(system_u:object_r: splunkdashboards_var_lib_t,s0)
then following label:
guest_u:object_r:usr_home_dir_t.
If in /etc/passwd
splunk:x:101:101:Splunk User:/nonexistant:/sbin/nologin
then label as expected.
I see Apache and Postfix have homedirs in various directories and are labelled correctly.
Please why?
genhomedircon generates user home directory contexts when you build/load the policy. So after you change the user home dir in /etc/passwd, you need to commit changes by running semodule -B, to build/load policy
Thank you.
selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux
selinux@lists.fedoraproject.org