sound within sandboxed firefox
Dominick Grift
dominick.grift at gmail.com
Tue Dec 10 12:58:27 UTC 2013
On Tue, 2013-12-10 at 00:01 +0100, Dominick Grift wrote:
>
> I don't know why pulseaudio is determined to run with the system_r role but i suspect it may be started by the dbus system bus? (in other distros, and refpolicy pulseaudio just runs with the user role)
It is actually just a role transition rule that tells selinux to role
transition from unconfined_r to system_r on pulseaudio_exec_t.
> $ sesearch --role_trans -t pulseaudio_exec_t
> Found 1 role_transition rules:
> role_transition unconfined_r pulseaudio_exec_t system_r;
>
I do not know why it was decided to do this. I think we should get rid
of that if possible
More information about the selinux
mailing list