Fedora Core 4

[Chris Adams]

Once upon a time, Sean Middleditch <elanthis at awesomeplay.com> said:
> That doesn't make much sense - there is no good reason at all for a user
> to need to muck around with SELinux to perform basic file sharing, and
> general administration tasks are going to need more than simply setting
> contexts in Nautilus.

Setting up CGI scripts to run under Apache is a fairly common task for
webservers and requires setting the file context if scripts are not in
cgi-bin (allowing *.cgi and/or *.pl to be CGI scripts is fairly common).

> Besides, changing them in Nautilus *WILL* break the system, because the
> second a package upgrade for selinux policies comes in and restorecon is
> run all of their customized settings will be erased.

Does that reset every context on the system, including on non-RPM files?
If so, that's going to be highly confusing to both users and system
administrators.  What is the point of even having the chcon command if
everything will be reset to some config file contents at arbitrary
times?  Just load the config file into the kernel and use it directly.

-- 
Chris Adams <cmadams at hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.