FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 10-30-2008, 08:00 PM
Marc Wiatrowski
 
Default nfs mounted /home and selinux

I'm trying to set the context on an nfs mounted /home. I believe
exactly like in Redhat's Deployment Guide at

http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.2/html/Deployment_Guide/ch45s02s03.html


On my system running CentOS 5.2:

$ ls -alZ /home
drwxr-xr-x root root system_ubject_r:home_root_t .
drwxr-xr-x root root system_ubject_r:root_t ..

$ mount -t nfs -o context=user_ubject_r:user_home_dir_t
server001a:/vol/vol01/home /home

$ ls -alZ /home
drwxrwxr-x root root system_ubject_r:nfs_t .
drwxr-xr-x root root system_ubject_r:root_t ..
drwx------ fred users system_ubject_r:nfs_t fred
drwx------ mike users system_ubject_r:nfs_t mike
drwx------ alice users system_ubject_r:nfs_t alice

$ mount -l
server001a:/vol01/home on /home type nfs
(rw,context="user_ubject_r:user_home_dir_t:s0",a ddr=10.1.1.11)


Shouldn't the users be set to user_ubject_r:user_home_dir_t? I feel
like I am missing something simple...

I don't see any avc or related syslog messages and the nfs server is an
older netapp if that matters.

thanks,
marc

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 10-31-2008, 08:42 AM
Tony Molloy
 
Default nfs mounted /home and selinux

On Thursday 30 October 2008 21:00:35 Marc Wiatrowski wrote:
> I'm trying to set the context on an nfs mounted /home. I believe
> exactly like in Redhat's Deployment Guide at
>
> http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.2/html/Deployme
>nt_Guide/ch45s02s03.html
>
>
> On my system running CentOS 5.2:
>
> $ ls -alZ /home
> drwxr-xr-x root root system_ubject_r:home_root_t .
> drwxr-xr-x root root system_ubject_r:root_t ..
>

Yep, default settings for /home

> $ mount -t nfs -o context=user_ubject_r:user_home_dir_t
> server001a:/vol/vol01/home /home
>
> $ ls -alZ /home
> drwxrwxr-x root root system_ubject_r:nfs_t .
> drwxr-xr-x root root system_ubject_r:root_t ..
> drwx------ fred users system_ubject_r:nfs_t fred
> drwx------ mike users system_ubject_r:nfs_t mike
> drwx------ alice users system_ubject_r:nfs_t alice

Yep that's an nfs mount so SELinux type is nfs. At least that's the way it
looks on my system

ls -al /users/

drwx------ molloyt csstaff system_ubject_r:nfs_t:s0 network

Regards,

Tony
>
> $ mount -l
> server001a:/vol01/home on /home type nfs
> (rw,context="user_ubject_r:user_home_dir_t:s0",a ddr=10.1.1.11)
>
>
> Shouldn't the users be set to user_ubject_r:user_home_dir_t? I feel
> like I am missing something simple...
>
> I don't see any avc or related syslog messages and the nfs server is an
> older netapp if that matters.
>
> thanks,
> marc
>
> _______________________________________________
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos


_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 05:37 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org