selinux/policycoreutils/restorecond/restorecond.conf
Guido Trentalancia 46b60eee89 policycoreutils: restorecond: relabel all mount runtime files in the restorecond example config
Ship a restorecond.conf file that relabels all mount runtime files under /etc and
not just /etc/mtab.

Mount also uses /etc/mtab~[0-9]{0,20} lock files (the number corresponds to the
PID) and the /etc/mtab.tmp temporary file.

The above refers to mount from util-linux-2.21.2 from kernel.org. See mount -vvv
for the location of such files.

A patch is also available for the reference policy to fix this issue.

Signed-off-by: Guido Trentalancia <guido@trentalancia.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
2012-09-12 21:14:42 -04:00

9 lines
114 B
Plaintext

/etc/services
/etc/resolv.conf
/etc/samba/secrets.tdb
/etc/mtab*
/var/run/utmp
/var/log/wtmp
/root/*
/root/.ssh/*