Bug 190078 - Multiple different specifications for /opt
Summary: Multiple different specifications for /opt
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy
Version: 5
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Russell Coker
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2006-04-27 11:57 UTC by Aurelien Bompard
Modified: 2007-11-30 22:11 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2006-05-01 19:31:08 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Aurelien Bompard 2006-04-27 11:57:58 UTC
Description of problem:
When running restorecon, I get:
/etc/selinux/targeted/contexts/files/file_contexts: Multiple different
specifications for /opt  (system_u:object_r:home_root_t and
system_u:object_r:usr_t).

This happens since the update to 2.2.34-3

Version-Release number of selected component (if applicable):
# rpm -q selinux-policy-targeted
selinux-policy-targeted-2.2.34-3.fc5

Comment 1 Daniel Walsh 2006-04-27 15:28:43 UTC
Do you have users with homedirectories under /opt?

Dan

Comment 2 Aurelien Bompard 2006-04-27 15:48:43 UTC
Yes, good catch !
$ grep opt /etc/passwd
zimbra:x:506:506::/opt/zimbra:/bin/bash



Comment 3 Daniel Walsh 2006-05-01 19:27:02 UTC
Can you move that directory?
At least create /opt/home/zimbra

Comment 4 Daniel Walsh 2006-05-01 19:31:08 UTC
Actually zimbra is not a login account so the UID should be less then 500 and
the login shell should be /bin/false or /sbin/nologin.  Could you report this as
a bug to the Zimbra folks.

You can change the shell 

usermod -s /sbin/nologin zimbra 

to eliminate your problem.



Comment 5 Aurelien Bompard 2006-05-01 21:14:36 UTC
OK, I've userdel'ed zimbra (I uninstalled it a few days ago), and I still get
the warning:
# restorecon -R /opt
/etc/selinux/targeted/contexts/files/file_contexts: Multiple different
specifications for /opt  (system_u:object_r:home_root_t and
system_u:object_r:usr_t).

There is no more /opt in /etc/passwd.

Comment 6 Daniel Walsh 2006-05-01 21:37:08 UTC
Run genhomedircon


Note You need to log in before you can comment on or make changes to this bug.