Description of problem: User can not access files on another disk /dev/sda. Version-Release number of selected component (if applicable): selinux-policy-3.3.1-33.fc9.noarch How reproducible: Always Steps to Reproduce: 1. reboot login as user ( floki ) and tray to access with Nautilus on separate disk ( /tonlist ) 2. If I log user out ( floki ) and then log in as root and then log root out and user in again then user can access the files on separate disk 3. Actual results: When as user then SElinux forbids access. SELinux is preventing polkit-resolve- (hald_t) "getattr" to <Unknown> (hald_t). In permessive mode it is possible to access files on separate disk Expected results: In FC8 then there is no problem to access /tonlist. FC8 is on third disk. Additional info:
Created attachment 302687 [details] SElinux AVC and ll of files as root and user
Created attachment 302688 [details] audit.log The audit log
You can allow this for now. # audit2allow -M mypol -l -i /var/log/audit/audit.log # semodule -i mypol.pp Fixed in selinux-policy-3.3.1-35.fc9.noarch
The probem is not solved. There are no SELinux warnings. I can access the files on other disk in permessive mode. When I change to Enforcing mode again I to can access the files on other disk. After rebooting the files are not accessable. selinux-policy-3.3.1-35.fc9.noarch is installed. I have rebooted useding "Relabel on next reboot"