* [Fwd: load_policy problem]
@ 2005-05-18 11:52 Daniel J Walsh
2005-05-18 13:52 ` Russell Coker
0 siblings, 1 reply; 2+ messages in thread
From: Daniel J Walsh @ 2005-05-18 11:52 UTC (permalink / raw)
To: SELinux
[-- Attachment #1: Type: text/plain, Size: 39 bytes --]
SELinux <SELinux@tycho.nsa.gov>
--
[-- Attachment #2: load_policy problem --]
[-- Type: message/rfc822, Size: 9608 bytes --]
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #2.1.1: Type: text/plain; charset=us-ascii, Size: 1143 bytes --]
Hi. I added user “setest” with useradd command and then I changed etc/selinux/strict/src/policy/users by adding following line:
{user_r second_r} user setest roles
Then I added these lines to etc/selinux/strict/src/policy/domains/user.te:
full_user_role(second)
allow system_r second_r
allow sysadm_r second_r
I changed etc/selinux/strict/src/policy/macros/user_macros.te as followes:
undefine ('in_user_role')
define('in_user_role' , '
role user_r types $1;
role second_r types $1;
')
Then I added “second_r:second_t” to etc/selinux/strict/src/policy/appconfig/default_type and then I ran make command in directory etc /selinux/strict/src/policy/ and finally I ran load_policy policy.18 .
I did all above parts successfully except loading policy.18 because every time I ran load_policy command my computer hanged and I had to restart my computer.
what’s wrong?
Thanks.
What address should I use to broadcast my mail among other members?
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
[-- Attachment #2.1.2: Type: text/html, Size: 6650 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [Fwd: load_policy problem]
2005-05-18 11:52 [Fwd: load_policy problem] Daniel J Walsh
@ 2005-05-18 13:52 ` Russell Coker
0 siblings, 0 replies; 2+ messages in thread
From: Russell Coker @ 2005-05-18 13:52 UTC (permalink / raw)
To: Daniel J Walsh, Hojat Vaheb; +Cc: SELinux
> I did all above parts successfully except loading policy.18 because every
> time I ran load_policy command my computer hanged and I had to restart my
> computer.
>
> what's wrong?
How exactly did the computer hang? Can you try this when logged in at a
virtual console (IE a non-graphical login) so that you can see kernel
messages. If a SE Linux policy error causes the system to stop operating
then there should be many messages displayed on the console about it.
If messages display to fast to read then enable a serial console and log them
to disk.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-05-18 13:52 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-05-18 11:52 [Fwd: load_policy problem] Daniel J Walsh
2005-05-18 13:52 ` Russell Coker
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.