GNOME Running with MLS
Daniel J Walsh
dwalsh at redhat.com
Mon Jun 17 15:39:45 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 06/13/2013 09:02 AM, Anschuetz, Eric R CTR NAWCTSD, 4.6.2 wrote:
> Hey all,
>
> For the past week or so I've been attempting to get MLS running with a
> graphical environment on RHEL 6.2, but I can't seem to figure out how a
> user with an elevated level (say, a user running at level s2) can log in
> graphically. Users running at level s0 work fine. I've tried giving gnome
> and X binaries in /usr/bin s0-s15 privileges, but still immediately get
> booted out after attempting to login. Even if I'm in permissive mode and
> login, running setenforce 1 will immediately log me out and prevent me from
> logging back in.
>
> I guess in short I'm wondering--does anyone have any tips for running a
> desktop environment with MLS?
>
> Thanks! Eric
>
>
> -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
Did you setup pam_namespace to have alternate homedirs and /tmp?
What AVC messages are you seeing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlG/LcEACgkQrlYvE4MpobPuMACeNyEY73XiuKh9LvBfLsj/1Tot
XeIAoMi5XTElNZS5S/sl+juPhv6AWQTc
=FnQQ
-----END PGP SIGNATURE-----
More information about the selinux
mailing list