Bug 989714
Summary: | SELinux User Context for /root/.ssh/ incorrect after restorecon | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Ryan Foster <rrf5000> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> |
Severity: | low | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.4 | CC: | dwalsh |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-07-29 19:09:10 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ryan Foster
2013-07-29 18:44:06 UTC
We don't change the user context by default restorecon -F -Rv /root/.ssh Should get you what you want. (In reply to Daniel Walsh from comment #2) > We don't change the user context by default > > restorecon -F -Rv /root/.ssh > > Should get you what you want. Ah-hah. That does indeed change the User Context. I'm glad to finally understand that. Going back and rereading "man restorecon", I noticed these lines: "man restorecon" excerpts: "This program is primarily used to reset the security context (type) (extended attributes) on one or more files." "If a file object has a context, restorecon will only modify the type portion of the security context. The -F option will force a replacement of the entire context." If I'd read it a little more closely, I could have saved you the trouble. Sorry about that. Thanks for responding! |