system-config-linux.py GUI inserts corrupt file labeling rule
Robert Nichols
rnicholsNOSPAM at comcast.net
Tue Jan 6 02:14:01 UTC 2015
Want to have fun? Run the system-config-linux GUI, go to "File Labeling"
and add a file context, let's say "var_t" for /tmp/junk regular file.
Hint: It would be wise to save all your local customizations before
trying that.
What you get is a corrupt rule where the File Type is shown as
[''.'--','-d','-c','-b','-s','-l','-p']
Now you are stuck. Because of the corrupt file type you can't delete
this rule. You can no longer save your local customizations because
"semanage -o" barfs on the corrupt type. Your only choice is to run
"semanage fcontext -D" to delete _all_ your customized contexts and
load them in again (_without_ using the GUI).
It doesn't matter what file type you selected. All are bad.
Doesn't anybody test this stuff?
--
Bob Nichols "NOSPAM" is really part of my email address.
Do NOT delete it.
More information about the selinux
mailing list