Bug 197587

Summary: AVC denials FAQ should refer to booleans and easier techniques first
Product: [Fedora] Fedora Documentation Reporter: Rahul Sundaram <sundaram>
Component: selinux-faqAssignee: Chad Sellers <csellers>
Status: CLOSED WONTFIX QA Contact: Karsten Wade <kwade>
Severity: medium Docs Contact:
Priority: medium    
Version: develCC: eric, kwade, smohan
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-06-08 19:57:18 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Rahul Sundaram 2006-07-04 11:50:18 UTC 
Description of problem:

The FAQ http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385 gives the
impression that AVC denials require policy changes. This is frequently not the
case. On many occasions changing booleans can fix it. We should document how to
manipulate booleans and what each boolean is for and provide more visibility to
the related commands(system-config-securitylevel, sesebool,getsebool -a)


Expected results:

Booleans should be suggested as the first thing to look at. 


Additional info:

Example of user confusion over this FAQ

https://www.redhat.com/archives/fedora-list/2006-July/msg00462.html
Comment 1 eric 2009-06-08 19:57:18 UTC 
This project has been moved to https://fedoraproject.org/wiki/SELinux_FAQ.  Please either make the necessary changes or use the "discussion" page for requests for changes.