how does rpm work under Selinux
Stephen Smalley
sds at tycho.nsa.gov
Tue May 31 19:11:30 UTC 2005
On Tue, 2005-05-31 at 14:50 -0400, James Z. Li wrote:
> Hi all,
>
> I was wondering how rpm works with Selinux, say I downloaded
> a third-party rpm package and installed it with rpm -i. Will rpm
> label the newly installed file properly or I have to relabel filesystem
> or do 'restorecon' manually ?
>
> Any webpages I could read on this problem? Thanks a lot.
rpm has been modified to set the security context on newly installed
files in accordance with the policy (based on the file_contexts
configuration). It originally incorporated a copy of the setfiles logic
for this purpose, and has recently been changed in FC4/devel to use
matchpathcon(3) instead, IIUC.
--
Stephen Smalley
National Security Agency
More information about the selinux
mailing list