FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora SELinux Support

 
 
LinkBack Thread Tools
 
Old 12-02-2009, 01:05 PM
Dominick Grift
 
Default Is this an selinux system?

On Wed, Dec 02, 2009 at 01:41:28PM +0000, Moray Henderson wrote:
> I'm trying to solve a problem on an old EL4 box.
>
> /etc/sysconfig/selinux says:
> SELINUX=enforcing
> SELINUXTYPE=targeted
>
> sestatus says:
> SELinux status: enabled
> SELinuxfs mount: /selinux
> Current mode: enforcing
> Mode from config file: enforcing
> Policy version: 18
> Policy from config file:targeted
>
> seinfo and sesearch say:
> Default policy search failed: This is not an selinux system.
>
> It clearly is an SELinux system - I see SELinux initializing during
> boot, it has an /selinux file system, files and processes have contexts,
> I get avc errors when I violate policy.
>
> What could be confusing seinfo and sesearch?

Might be related to the nature of the policy, which is monolithic.

>
> # ls -lZ /etc/selinux/targeted/policy
> -rw-r--r-- root root system_ubject_rolicy_config_t
> policy.18
> # rpm -qf /usr/bin/seinfo /usr/sbin/sestatus
> setools-1.5.1-5
> policycoreutils-1.18.1-4.7
> # rpm -V setools policycoreutils
> #
>
>
> Moray.
> "To err is human. To purr, feline."
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list@redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
--
fedora-selinux-list mailing list
fedora-selinux-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
 
Old 12-02-2009, 07:09 PM
Daniel J Walsh
 
Default Is this an selinux system?

On 12/02/2009 08:41 AM, Moray Henderson wrote:
> I'm trying to solve a problem on an old EL4 box.
>
> /etc/sysconfig/selinux says:
> SELINUX=enforcing
> SELINUXTYPE=targeted
>
> sestatus says:
> SELinux status: enabled
> SELinuxfs mount: /selinux
> Current mode: enforcing
> Mode from config file: enforcing
> Policy version: 18
> Policy from config file:targeted
>
> seinfo and sesearch say:
> Default policy search failed: This is not an selinux system.
>
> It clearly is an SELinux system - I see SELinux initializing during
> boot, it has an /selinux file system, files and processes have contexts,
> I get avc errors when I violate policy.
>
> What could be confusing seinfo and sesearch?
>
> # ls -lZ /etc/selinux/targeted/policy
> -rw-r--r-- root root system_ubject_rolicy_config_t
> policy.18
> # rpm -qf /usr/bin/seinfo /usr/sbin/sestatus
> setools-1.5.1-5
> policycoreutils-1.18.1-4.7
> # rpm -V setools policycoreutils
> #
>
>
> Moray.
> "To err is human. To purr, feline."
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list@redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
>
It might be a version mismatch between seinfo and sesearch and the RHEL4 policy that is confusing it.

--
fedora-selinux-list mailing list
fedora-selinux-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
 

Thread Tools




All times are GMT. The time now is 08:50 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org