Description of problem: I installed Fedora Core 2 Test 2 with selinux in non-enforcing (warn) mode. The creation of a non-superuser account failed silently. After logging in as root, I tried adduser and useradd. Both failed with the error: cannot rewrite password file. Upon reinstalling with selinux in disabled mode the creation of the non-superuser account succeeded. BTW, my initial selinux install was in enforcing (active mode). The system booted, but could not run gnome and would not give me a text login prompt. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Seems to work fine in FC3.
Bug is back again when using selinux-policy-targeted_1.17.30-2.66_noarch.rpm on FC3. Strangely, there are no users at all. Should think firstboot made one after information was filled out, but obviously that didn't happen.
Comment 2: Works for me with FC3 and selinux-policy-targeted-1.17.30-2.66
Does not work for me in FC3 with selinux-policy-targeted-1.17.30-2.73. I did have a hiccup during install in that when I rebooted, I needed to go to init 3 (X doesn't work on this box for whatever reason) so I booted from the rescue cd, changed the init level in inittab and rebooted and firstboot came up fine. It asked for user info but didn't actually create the user.
libselinux-1.19.1-8 also
correction. The user (mykel in this case) was added during firstboot. But any attempt to change mykel's password using passwd as root results in 'passwd: Authentication failure' If I 'su - mykel', and try to passwd, I enter what I know to be mykel's password and I get an Authentication token manipulation error.
What file system are you using? We only support ext3/ext2.
And that's the issue. The entire system is on reiserfs. Thanks for the info. The descent into madness (from not knowing why this was happening) has been staved off. I reformatted ext3 and things went fine. I didn't note anywhere in any documentation that ext[2-3] fs was the only supported fs. I chose linux reiserfs at install time and installed my system to an entirely reiser fs. Obviously you're telling me that this doesn't work and I accept that. But the results are [to me] non-intuitive even for the Linux world. For informational purposes: Is it a condition of selinux or is it just that FC won't install to reiser? I haven't tried to do a root install to reiser again. How do I get the ability to add users and change passwords? Is there some alternate path or do must I do a reformat/reinstall with ext3? Is this actually documented somewhere that I wasn't diligent enough to find?
Comment 8: http://fedora.redhat.com/docs/selinux-faq-fc3/index.html#id2943011 (referenced from the Release Notes link http://fedora.redhat.com/docs/selinux-faq/)
So, it's ReiserFS for me too. Any idea when they will support the right label?
Sorry, no idea. I would ask this type of question at selinux.gov