Bug 119763 - mount points disappear for user
Summary: mount points disappear for user
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: policy
Version: rawhide
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Daniel Walsh
QA Contact: Ben Levenson
URL:
Whiteboard:
Keywords:
: 119762 (view as bug list)
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2004-04-02 01:02 UTC by Scott Sloan
Modified: 2007-11-30 22:10 UTC (History)
0 users

(edit)
Clone Of:
(edit)
Last Closed: 2004-04-03 04:17:46 UTC


Attachments (Terms of Use)

Description Scott Sloan 2004-04-02 01:02:04 UTC
Description of problem

harddrive1 = /dev/hda  (has swap / and /boot partitions)
harddrive2 = /dev/hdb  (has /stor  partition for mass storage  owner
set to 501)

user 501 doesn't have access to the drive, nor does it appear under
nautilus for the user even though he is the user. first saw this bug
and reported it as 

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=119517

which has a screenshot of it occuring under mozilla. 

Didn't know where to post it, thinking it is selinux related

Comment 1 Scott Sloan 2004-04-02 01:36:32 UTC
logs show this

Apr  1 18:39:13 localhost kernel: audit(1080866353.616:0): avc: 
denied  { getattr } for  pid=3213 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir
Apr  1 18:39:13 localhost kernel: audit(1080866353.754:0): avc: 
denied  { getattr } for  pid=3176 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir
Apr  1 18:39:13 localhost kernel: audit(1080866353.912:0): avc: 
denied  { getattr } for  pid=3176 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir


Comment 2 Scott Sloan 2004-04-02 16:38:28 UTC
With Setting: 

/etc/sysconfig/selinux

selinux=disabled

I can properly access the directories, so this is a direct symptom of
selinux. 

To me it seems that selinux is ignoring the file owner and properties
and over-riding them by whatever is listed in a policy somewhere. I
don't think this should be. Shouldn't file rights over ride policy?

Comment 3 Daniel Walsh 2004-04-03 04:17:46 UTC
What kind of file systems is mounted on /stor.  

SELinux overrides DAC or file owner/properties.  The problem here is
this is a mislabled file system.  If you want a user to be able to
access the file system, you could mount it with 
context=system_u:object_r:user_home_t


Comment 4 Bill Nottingham 2004-04-05 22:00:35 UTC
*** Bug 119762 has been marked as a duplicate of this bug. ***


Note You need to log in before you can comment on or make changes to this bug.