sandbox selinux-policy module disabled by default in F19
Daniel J Walsh
dwalsh at redhat.com
Mon Aug 26 13:56:40 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 08/26/2013 04:30 AM, Fl at sh wrote:
> $ sandbox -t sandbox_min_t htop ERROR: could not find datum for type
> sandbox_t /bin/sandbox: Sandbox Policy is currently disabled. You need to
> enable the policy by executing the following as root # semodule -e sandbox
> $ su -c 'semodule -l | grep sand' sandbox 1.0.0 Disabled sandboxX
> 1.0.0
>
> PS: htop used as example there After update\reinstall
> selinux-policy-targeted package this module is disabled again.
>
> In F17 this module was enabled.
>
> The question is that now this module will be always disabled by default, or
> it is a temporary solution?
>
sandbox.pp should be enabled once you enable it, if not then this is a bug in
the tooling.
Are you sure you want sandbox -t sandbox_min_t htop as opposed to sandbox -X
- -t sandbox_min_t htop
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlIbXpcACgkQrlYvE4MpobNapQCfThMw+B1dAKhgBGAWvvEBaAJ8
H9UAn06Z9jmzkKRWgxpsu5vDYJa4+bz0
=W77l
-----END PGP SIGNATURE-----
More information about the selinux
mailing list