home directory problems with Fedora 8
I have previously existing home directories under /u01/home.
I did this because upgrading from FC6 to Fedora 7 caused me trouble and I want to avoid having to recreate my home directory. So I copied the whole system into /u01 before doing a fresh Fedora 8 install. I do not have a separate home-only partition. SELinux prevents me from making a symbolic link like this: /home--> /u01/home or like this /home/chris--> /u01/home/chris. If I setup a dummy user with home at /home/chris, then edit /etc/passwd to change the home to /u01/home/chris... that doesn't work either. nor if I create a new user like so: useradd -d /u01/home/pete pete Is there something magic about the string '/home' ? that keeps me from creating home directories anywhere else? I'd really love to keep from smashing /home on every OS reload. For now I have SELinux in Permissive mode so I can at least use the system. -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
My reply is not selinux related but will solve you bashing the /home.
Put /home on a separate file system. When you install Fedora 9 or whatever comes down the pike, install and use the advanced options for the disk layout. Do not change the lay out and make sure you know which partition belongs to which file system. Lay them out the same way and choose not to format the partitions you want to keep. Depending on what options you choose, you may have to just not do anything with the /home file system at install and add the mount after the installation over the /home directory. Works for me. Regards, John Subject: home directory problems with Fedora 8 From: Chris Howard <chris@yipyap.com> Date: Wed, 05 Dec 2007 22:51:59 -0700 To: fedora-selinux-list@redhat.com To: fedora-selinux-list@redhat.com Content-Transfer-Encoding: 7bit Precedence: junk MIME-Version: 1.0 Reply-To: chris@yipyap.com Message-ID: <1196920319.3483.7.camel@w0ep.yipyap.com> Content-Type: text/plain Message: 2 I have previously existing home directories under /u01/home. I did this because upgrading from FC6 to Fedora 7 caused me trouble and I want to avoid having to recreate my home directory. So I copied the whole system into /u01 before doing a fresh Fedora 8 install. I do not have a separate home-only partition. SELinux prevents me from making a symbolic link like this: /home--> /u01/home or like this /home/chris--> /u01/home/chris. If I setup a dummy user with home at /home/chris, then edit /etc/passwd to change the home to /u01/home/chris... that doesn't work either. nor if I create a new user like so: useradd -d /u01/home/pete pete Is there something magic about the string '/home' ? that keeps me from creating home directories anywhere else? I'd really love to keep from smashing /home on every OS reload. For now I have SELinux in Permissive mode so I can at least use the system. ------------------------------------------------------------------------ -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
Chris Howard wrote:
> I have previously existing home directories under /u01/home. > I did this because upgrading from FC6 to Fedora 7 caused me trouble > and I want to avoid having to recreate my home directory. So I copied > the whole system into /u01 before doing a fresh Fedora 8 install. I > do not have a separate home-only partition. > > SELinux prevents me from making a symbolic link like this: > > /home--> /u01/home or like this > > /home/chris--> /u01/home/chris. I wouldn't do symlinks like that unless you have some strange reason to. Just have /etc/passwd point to the actual directories under /u01/home. > If I setup a dummy user with home at /home/chris, then > edit /etc/passwd to change the home to /u01/home/chris... that doesn't > work either. > > nor if I create a new user like so: > > useradd -d /u01/home/pete pete > > Is there something magic about the string '/home' ? > that keeps me from creating home directories anywhere else? > > I'd really love to keep from smashing /home on every OS reload. > > For now I have SELinux in Permissive mode so I can at least use the > system. Here's how I /think/ it works: a) If you've got an empty /u01/home, and you want to add new users, do this: Set the type of /u01/home to home_root_t: chcon -t home_root_t /u01/home and then useradd -d /u01/home/pete will do the right thing. b) Supposing you already have some use home dirs there (ie the homeidrs in /etc/passwd point to /u01/home/*), I think you can just run 'genhomedircon' and then run: restorcon -R -v /u01/home In the case of (b), it doesn't hurt to do the chcon operation first, but I don't think it's necessary. (note: I'm not an expert myself, but if these steps don't work for you, they should at least point you in the right direction). HTH, Matt -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
On Thu, 2007-12-06 at 12:49 -0500, Matthew Gillen wrote:
> Chris Howard wrote: > > I have previously existing home directories under /u01/home. > > I did this because upgrading from FC6 to Fedora 7 caused me trouble > > and I want to avoid having to recreate my home directory. So I copied > > the whole system into /u01 before doing a fresh Fedora 8 install. I > > do not have a separate home-only partition. > > > > SELinux prevents me from making a symbolic link like this: > > > > /home--> /u01/home or like this > > > > /home/chris--> /u01/home/chris. > > I wouldn't do symlinks like that unless you have some strange reason to. Just > have /etc/passwd point to the actual directories under /u01/home. > > > If I setup a dummy user with home at /home/chris, then > > edit /etc/passwd to change the home to /u01/home/chris... that doesn't > > work either. > > > > nor if I create a new user like so: > > > > useradd -d /u01/home/pete pete > > > > Is there something magic about the string '/home' ? > > that keeps me from creating home directories anywhere else? > > > > I'd really love to keep from smashing /home on every OS reload. > > > > For now I have SELinux in Permissive mode so I can at least use the > > system. > > Here's how I /think/ it works: > a) If you've got an empty /u01/home, and you want to add new users, do this: > Set the type of /u01/home to home_root_t: > chcon -t home_root_t /u01/home > and then useradd -d /u01/home/pete will do the right thing. > > b) Supposing you already have some use home dirs there (ie the homeidrs in > /etc/passwd point to /u01/home/*), I think you can just run 'genhomedircon' > and then run: > restorcon -R -v /u01/home > > In the case of (b), it doesn't hurt to do the chcon operation first, but I > don't think it's necessary. > > (note: I'm not an expert myself, but if these steps don't work for you, they > should at least point you in the right direction). > > HTH, > Matt > Thanks Matt... but it doesn't work. When I do: chcon-t home_root_t /u01/home then a: restorecon -R -v /u01/home changes it back to default_t A system-wide recontext sets it back to: /u01 is default_t /u01/home is default_t /u01/home/chris is default_t ARGG! in the "real" filesystem / is root_t /home is home_root_t /usr is usr_t /var is var_t (maybe I need to make a u01_t??) later... If I set /u01/home to home_root_t and /u01/home/chris to unconfined_home_dir_t and all files under /u01/home/chris to unconfined_home_t then it works.... but recontexting will mess that all up again. Somewhere in this box there is something that won't let me put home directories on /u01/home. -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
Chris Howard wrote:
> Thanks Matt... but it doesn't work. > > When I do: > > chcon-t home_root_t /u01/home > > then a: > > restorecon -R -v /u01/home > > changes it back to default_t > > A system-wide recontext sets it back to: > > /u01 is default_t > /u01/home is default_t > /u01/home/chris is default_t Well, the brute force way would be to open up: /etc/selinux/targeted/contexts/files/file_contexts.homedirs and copy/paste all the "/home/*" entries and do some grep-replace on the new copy. A restorcon on /u01/home /should/ work then. Good luck, Matt -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
On Thursday 06 December 2007 17:49, Matthew Gillen wrote:
> Chris Howard wrote: > > I have previously existing home directories under /u01/home. > > I did this because upgrading from FC6 to Fedora 7 caused me trouble > > and I want to avoid having to recreate my home directory. So I copied > > the whole system into /u01 before doing a fresh Fedora 8 install. I > > do not have a separate home-only partition. > > > > SELinux prevents me from making a symbolic link like this: > > > > /home--> /u01/home or like this > > > > /home/chris--> /u01/home/chris. > > I wouldn't do symlinks like that unless you have some strange reason to. > Just have /etc/passwd point to the actual directories under /u01/home. > > > If I setup a dummy user with home at /home/chris, then > > edit /etc/passwd to change the home to /u01/home/chris... that doesn't > > work either. > > > > nor if I create a new user like so: > > > > useradd -d /u01/home/pete pete > > > > Is there something magic about the string '/home' ? > > that keeps me from creating home directories anywhere else? > > > > I'd really love to keep from smashing /home on every OS reload. > > > > For now I have SELinux in Permissive mode so I can at least use the > > system. > > Here's how I /think/ it works: > a) If you've got an empty /u01/home, and you want to add new users, do > this: Set the type of /u01/home to home_root_t: > chcon -t home_root_t /u01/home > and then useradd -d /u01/home/pete will do the right thing. > > b) Supposing you already have some use home dirs there (ie the homeidrs in > /etc/passwd point to /u01/home/*), I think you can just run 'genhomedircon' > and then run: > restorcon -R -v /u01/home > > In the case of (b), it doesn't hurt to do the chcon operation first, but I > don't think it's necessary. > > (note: I'm not an expert myself, but if these steps don't work for you, > they should at least point you in the right direction). > > HTH, > Matt > > -- > fedora-selinux-list mailing list > fedora-selinux-list@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-selinux-list I had similar problems after a fresh install of F8 last week messed up my /users directory. After an off-list discussion with Daniel Walsh he traced it to a problem in libsemanage and released a new libsemanage to F8-testing libsemanage-2.0.12-2.fc8. Here is a snippet from his e-mail There is a bug in libsemanage that is preventing proper labeling. I have just released libsemanage-2.0.12-2.fc8 to fedora-testing. If you install this package, you can execute #semodule -B #restorecon -R -v /users and it should clean up the labeling. You can check what semodule and restorecon do in the man pages. Hope this helps, Tony -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
home directory problems with Fedora 8
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1 Tony Molloy wrote: > On Thursday 06 December 2007 17:49, Matthew Gillen wrote: >> Chris Howard wrote: >>> I have previously existing home directories under /u01/home. >>> I did this because upgrading from FC6 to Fedora 7 caused me trouble >>> and I want to avoid having to recreate my home directory. So I copied >>> the whole system into /u01 before doing a fresh Fedora 8 install. I >>> do not have a separate home-only partition. >>> >>> SELinux prevents me from making a symbolic link like this: >>> >>> /home--> /u01/home or like this >>> >>> /home/chris--> /u01/home/chris. >> I wouldn't do symlinks like that unless you have some strange reason to. >> Just have /etc/passwd point to the actual directories under /u01/home. >> >>> If I setup a dummy user with home at /home/chris, then >>> edit /etc/passwd to change the home to /u01/home/chris... that doesn't >>> work either. >>> >>> nor if I create a new user like so: >>> >>> useradd -d /u01/home/pete pete >>> >>> Is there something magic about the string '/home' ? >>> that keeps me from creating home directories anywhere else? >>> >>> I'd really love to keep from smashing /home on every OS reload. >>> >>> For now I have SELinux in Permissive mode so I can at least use the >>> system. >> Here's how I /think/ it works: >> a) If you've got an empty /u01/home, and you want to add new users, do >> this: Set the type of /u01/home to home_root_t: >> chcon -t home_root_t /u01/home >> and then useradd -d /u01/home/pete will do the right thing. >> >> b) Supposing you already have some use home dirs there (ie the homeidrs in >> /etc/passwd point to /u01/home/*), I think you can just run 'genhomedircon' >> and then run: >> restorcon -R -v /u01/home >> >> In the case of (b), it doesn't hurt to do the chcon operation first, but I >> don't think it's necessary. >> >> (note: I'm not an expert myself, but if these steps don't work for you, >> they should at least point you in the right direction). >> >> HTH, >> Matt >> >> -- >> fedora-selinux-list mailing list >> fedora-selinux-list@redhat.com >> https://www.redhat.com/mailman/listinfo/fedora-selinux-list > > > I had similar problems after a fresh install of F8 last week messed up > my /users directory. After an off-list discussion with Daniel Walsh he traced > it to a problem in libsemanage and released a new libsemanage to F8-testing > libsemanage-2.0.12-2.fc8. > > Here is a snippet from his e-mail > > There is a bug in libsemanage that is preventing proper labeling. I > have just released libsemanage-2.0.12-2.fc8 to fedora-testing. > > If you install this package, you can execute > > #semodule -B > #restorecon -R -v /users > and it should clean up the labeling. > > You can check what semodule and restorecon do in the man pages. > > Hope this helps, > > Tony > > -- > fedora-selinux-list mailing list > fedora-selinux-list@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-selinux-list There is a bug in libsemanage that is preventing proper labeling of non-default homedirectories. This is in testing right now and should be released to updates soon. I requested the release over the weekend. libsemanage-2.0.12-2.fc8 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHXaTIrlYvE4MpobMRAnRbAKDKBfvgz8Y1kY3wYOlYFY petWfsJQCfVmxv MCD/S/73YsGH2HnEStQkWKw= =227O -----END PGP SIGNATURE----- -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list |
| All times are GMT. The time now is 01:59 PM. |
VBulletin, Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.