Red Hat Bugzilla – Bug 120126
Anaconda should run setfiles on existing partitions
Last modified: 2007-11-30 17:10:39 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6)
Description of problem:
If selinux is selected in install, then setfiles
/etc/security/file_contexts <partition> should be run on partitions to
be retained eg: /home.
Otherwise wierd results can happen (not just permission denied errors)
I have somewhat serious reservations about doing this since if you
then go back to earlier releases without an updated kernel, your
system will not boot at all.
Dan, thoughts here?
I believe this is not a problem with the last fc1 kernels. The
problem here is that this is a indefinite period of time, and we
really do not support upgrades. So I would say no. The user will
either need to relable or mount his /home using a context users can
I was not really talking about "upgrades" (never do them).
What I meant was a clean install while leaving home alone (I keep www
there as well as users accounts)
If the user selects selinux on install, hen shouldn't the install give
a usable system on first boot.
No matter what, this needs relnoted, whichever way we go.
With SELinux off by default, deferring this until FC3
Not going to do this, there are too many potential negative impacts
and it shouldn't matter much with targeted policy (the default in FC3)