-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/20/2011 01:11 AM, Jatin K wrote:
On Tuesday 19 July 2011 06:10 PM, Daniel J Walsh wrote:
> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>
> On 07/19/2011 07:57 AM, Jatin K wrote:
>> Dear all
>>
>> I'm RHEL 6 , trying to add a user with following command
>>
>> useradd -d /1home user1 passwd user1
>>
>>
>> if I try ssh user1@localhost , following error displayed on the
>> screen
>>
>> Could not chdir to home directory /1home/user1: Permission denied
>> , but user still able to login and prompts displayed
>> [user1@testsrv /]$ instead of [user1@testsrv ~]$ ( user not
>> getting its home directory.) -------------following is the
>> reference related to home directory permission and
>> security--------------- directory permission
>>
>> ls -ld /1home
>>
>> drwxr-xr-x. 4 root root 4096 Jul 19 10:43 /1home
>>
>> ------------------------------------- SELinux Context
>>
>> ls -ldZ /1home
>>
>> drwxr-xr-x. root root system_u:object_r:home_root_t:s0 /1home/
>>
>> ---------------------------------------------
>>
>> what could be the problem ???
>>
> You have an SELinux labeling problem
Thank you very very much .....
I run following and the problem is solved
chcon --reference /home /1home/*
> Simplest solution.
>
> # semanage fcontext -a -e /home /1home # restorecon -R -v /1home
>
sorry I have not tried your said command as SELinux management tool
is not installed I think, it says semange command not found but can
you spotlight on difference between your said command and which I
run
Warm Regards
semanage not semange
# which semanage
/usr/sbin/semanage
In your case you just labeled eveything in /1home as home_root_t, which
is wrong. Also if the system gets relabeled, your labelling will be lost.
Mine says to set the system defaults to label everything under /1home as
if it was under /home
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla -
http://enigmail.mozdev.org/
iEYEARECAAYFAk4m0YAACgkQrlYvE4MpobODTACdEAMxkyHv9TPYdePeNd1fXbYm
TkYAoIx0KwZWjMfwNfn3qSnxECpFJukB
=YAom
-----END PGP SIGNATURE-----