From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5) Gecko/20041228 Firefox/1.0 Fedora/1.0-8 Description of problem: Argh - the search rule is needed, and I removed it by accident in the last patch I sent you. The execute is not needed - the search is still required. --- samba.te 2005-02-09 22:11:31.000000000 -0500 +++ samba.new 2005-02-09 22:11:22.000000000 -0500 @@ -164,6 +164,7 @@ r_dir_file(smbmount_t, proc_t) # Fork smbmnt +allow smbmount_t bin_t:dir search; can_exec(smbmount_t, smbmount_exec_t) allow smbmount_t self:process { fork signal_perms }; Version-Release number of selected component (if applicable): selinux-policy-strict-1.21.11-2 How reproducible: Always Steps to Reproduce: 1. See summary Additional info:
allow smbmount_t bin_t:dir r_dir_perms; Is in the current policy