Hi:

I try to make my system selinux enabled and followed the steps from
http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml?part=2&chap=1,
but I'm unable to mount /selinux?

> cat /etc/fstab
> # /etc/fstab: static file system information.
> #
> # noatime turns off atimes for increased performance (atimes normally
> aren't
> # needed); notail increases performance of ReiserFS (at the expense of
> storage
> # efficiency). It's safe to drop the noatime options if you want and to
> # switch between notail / tail freely.
> #
> # The root filesystem should have a pass number of either 0 or 1.
> # All other filesystems should have a pass number of 0 or greater than 1.
> #
> # See the manpage fstab(5) for more information.
> #
>
> # <fs> <mountpoint> <type>
> <opts> <dump/pass>
>
> # NOTE: If your BOOT partition is ReiserFS, add the notail option to opts.
> /dev/hda1 /boot ext3
> defaults,noauto,noatime 1 2
> /dev/hda3 / ext4
> noatime 0 1
> /dev/hda2 none swap
> sw 0 0
> /dev/cdrom /mnt/cdrom auto
> noauto,ro 0 0
> /dev/fd0 /mnt/floppy auto
> noauto 0 0
>
> proc /proc proc
> defaults 0 0
> shm /dev/shm tmpfs
> nodev,nosuid,noexec 0 0
>
> # For a "targeted" or "strict" policy type:
> tmpfs /tmp tmpfs
> defaults,noexec,nosuid,rootcontext=system_ubject _r:tmp_t 0 0
>
> # The udev mount is due to bug #373381
> udev /dev tmpfs
> rw,rootcontext=system_ubject_r:device_t,seclabel ,nosuid,relatime,size=10m,mode=755
> 0 0
> none /selinux selinuxfs defaults 0 0

> mount
> rootfs on / type rootfs (rw)
> /dev/root on / type ext4
> (rw,noatime,user_xattr,acl,barrier=1,data=ordered)
> devtmpfs on /dev type devtmpfs
> (rw,relatime,size=92980k,nr_inodes=23245,mode=755)
> proc on /proc type proc (rw,relatime)
> rc-svcdir on /lib/rc/init.d type tmpfs
> (rw,nosuid,nodev,noexec,relatime,size=1024k,mode=7 55)
> sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
> securityfs on /sys/kernel/security type securityfs
> (rw,nosuid,nodev,noexec,relatime)
> debugfs on /sys/kernel/debug type debugfs
> (rw,nosuid,nodev,noexec,relatime)
> fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime)
> devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620)
> shm on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime)
> tmpfs on /tmp type tmpfs (rw,noexec,nosuid)
> usbfs on /proc/bus/usb type usbfs
> (rw,noexec,nosuid,devmode=0664,devgid=85)
> binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc
> (rw,noexec,nosuid,nodev)

> mount -a
> mount: wrong fs type, bad option, bad superblock on udev,
> missing codepage or helper program, or other error
> (for several filesystems (e.g. nfs, cifs) you might
> need a /sbin/mount.<type> helper program)
> In some cases useful info is found in syslog - try
> dmesg | tail or so
>
> mount: unknown filesystem type 'selinuxfs'

Regards:
Cor

On Wed, Jan 04, 2012 at 06:09:11PM +0200, Cor Legmaat wrote:
> I try to make my system selinux enabled and followed the steps from
> http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml?part=2&chap=1,
> but I'm unable to mount /selinux?
> > mount -a
> > mount: wrong fs type, bad option, bad superblock on udev,
> > missing codepage or helper program, or other error
> > (for several filesystems (e.g. nfs, cifs) you might
> > need a /sbin/mount.<type> helper program)
> > In some cases useful info is found in syslog - try
> > dmesg | tail or so
> >
> > mount: unknown filesystem type 'selinuxfs'

What is the output of "zgrep SELINUX /proc/config.gz" (or "grep SELINUX
/usr/src/linux/.config")?

Wkr,
Sven Vermeulen