On Mon, 2001-12-03 at 10:13, Stephen Smalley wrote:
>
> indirectly through /usr/X11R6/bin/Xwrapper, which is labeled with the
> xserver_exec_t type. This type causes a domain transition from user_t
> to user_xserver_t. So I don't know why your X server is running in the
> wrong domain.
>

Yes, I saw the reason for this problem. The file_contexts listing only assigns xserver_t to /usr/X11R6/bin/Xwrapper when many systems name the X server X or XFree86 (mine does the latter). I assigned the xserver_t type to both of these files and it solved the problem.

I am now able to run X windows and even gdm, although gdm has some strange problems. When running under it, the newrole command gets the error message: 'unable to find user in passwd'. I do not get this message when running under ordinary X windows.

Another anomaly: in Redhat 7.1, /dev/hdc can be a hard drive OR a cdrom (!). The gnome desktop wouldn't start initially because the system thought it was trying to access a fixed disk.

In addition, MAKEDEV should be assigned a type that is some sort of system script rather than a device_t.

Thanks very much for your comments. I'll create a domain for postgres.
>

--


--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.