From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040312 Epiphany/1.1.12 Description of problem: If selinux is selected in install, then setfiles /etc/security/file_contexts <partition> should be run on partitions to be retained eg: /home. Otherwise wierd results can happen (not just permission denied errors)
I have somewhat serious reservations about doing this since if you then go back to earlier releases without an updated kernel, your system will not boot at all. Dan, thoughts here?
I believe this is not a problem with the last fc1 kernels. The problem here is that this is a indefinite period of time, and we really do not support upgrades. So I would say no. The user will either need to relable or mount his /home using a context users can write too. Dan
I was not really talking about "upgrades" (never do them). What I meant was a clean install while leaving home alone (I keep www there as well as users accounts) If the user selects selinux on install, hen shouldn't the install give a usable system on first boot.
No matter what, this needs relnoted, whichever way we go.
With SELinux off by default, deferring this until FC3
Not going to do this, there are too many potential negative impacts and it shouldn't matter much with targeted policy (the default in FC3)