semanage syntax
Dave Quigley
selinux at davequigley.com
Sun Jul 14 05:31:09 UTC 2013
On 7/12/2013 11:41 AM, m.roth at 5-cent.us wrote:
> Something I have not yet found while googling: we have a package (bloody
> CA idiots) that has a directory with *both* executables and libraries. I
> want to change only the .so's to textrel_shlib_t; I do not want to change
> the directory, or the executables. Pardon my ignorance of what I consider
> to be an obscure wildcard usage, but how do do this? I've tried
> semanage fcontext -a -t textrel_shlib_t
> "/usr/local/opt/smwa/webagent/bin/*.so"
> with and without parens around the asterisk, and around the last slash and
> the asterisk....
>
> mark
>
>
> --
> selinux mailing list
> selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
Sent from the wrong email so resending
I think you're missing the escape on the last .
Try /usr/local/opt/smwa/webagent/bin/*\.so
a similar looking rule from semanage fcontext -l is
/opt/VBoxGuestAdditions.*/lib/VBox.*\.so
More information about the selinux
mailing list