selinux January 2010 archive
Main Archive Page > Month Archives  > selinux archives
selinux: Security Context Type Changes

Security Context Type Changes

From: Tomas, Gregg A (IS) <Gregg.Tomas_at_nospam>
Date: Wed Jan 06 2010 - 22:34:49 GMT
To: <selinux@tycho.nsa.gov>


Hi  

We are currently integrating our SELinux Policy on a RHEL5 machine. However, we are having difficulty in restricting our application within a specific directory because "something" changes our security context type of our users to init_t instead of unconfined_t. Root gets changed to (i.e. <user>:<role>:init_t). We are running with init level 4. We must have tried everything in the book to determine what changes the security context type of our users. Would anyone have any tips?  

We did change inittab to run init level 5, touch /.autorelabel, rebooted, checked id -Z and it is unconfined_t. However, ultimately we would like to run with init 4.  

Thanks in advance. -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.