issue on deleting a SELinux costumized user
Daniel J Walsh
dwalsh at redhat.com
Fri Nov 1 13:22:31 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/31/2013 03:46 PM, Leonidas S. Barbosa wrote:
>
> I was trying to delete an user with seobject.seluserRecords.delete, but I
> realized that once I have a SELinux user created with
> seobject.seluserRecords.add method deleted when I try to use .add again to
> creates another one I grab the follow error message:
>
> libsemanage.validate_handler: selinux user se_auditadm_u does not exist
> (No such file or directory). libsemanage.validate_handler: seuser mapping
> [se_auditadm_u -> (se_auditadm_u, s0-s0:c0.c1023)] is invalid (No such file
> or directory). libsemanage.dbase_llist_iterate: could not iterate over
> records (No such file or directory).
>
>
> The only way I found to fix it was deleting some lines related to the user
> was deleted in :
>
> /etc/selinux/targeted/modules/active/seusers and seusers.final.
>
> I'm wondering if I'm doing something wrong or if has a better way to do
> that.
>
>
> Thanks in advance. Leonidas.
>
>
> -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
Well I would say this is a bug. You chould not be allowed to delete a SELinux
User if the SELinux User is being used in a mapping file.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlJzqxcACgkQrlYvE4MpobMyEQCfY20g8+7QXJdDCidMfMAjn4vO
ndcAoIxhR92af2q3+scPYnS/mXHsI/Qp
=yoAz
-----END PGP SIGNATURE-----
More information about the selinux
mailing list