[DSE-User] cannot find policy.conf file
Bai Shuwei
baishuwei at gmail.com
Fri Sep 4 01:43:55 UTC 2009
Hi, All:
When I learn how to add SELinux policy, I find I cannot find the src
directory in the /etc/selinux/*/*. I think I should lost packages
in installation. The bellow is the /etc/selinux tree:
weslab:/etc/selinux# find .
.
./default
./default/seusers
./default/contexts
./default/contexts/default_contexts
./default/contexts/netfilter_contexts
./default/contexts/x_contexts
./default/contexts/customizable_types
./default/contexts/userhelper_context
./default/contexts/files
./default/contexts/files/media
./default/contexts/files/file_contexts.local
./default/contexts/files/file_contexts.homedirs
./default/contexts/files/file_contexts
./default/contexts/removable_context
./default/contexts/initrc_context
./default/contexts/default_type
./default/contexts/dbus_contexts
./default/contexts/users
./default/contexts/users/staff_u
./default/contexts/users/root
./default/contexts/users/user_u
./default/contexts/securetty_types
./default/contexts/failsafe_context
./default/policy
./default/policy/policy.23
./default/setrans.conf
./default/users
./default/users/local.users
./default/users/system.users
./default/modules
./default/modules/semanage.read.LOCK
./default/modules/semanage.trans.LOCK
./default/modules/active
./default/modules/active/seusers
./default/modules/active/netfilter_contexts
./default/modules/active/users_extra
./default/modules/active/homedir_template
./default/modules/active/file_contexts.local
./default/modules/active/modules
./default/modules/active/modules/telnet.pp
./default/modules/active/modules/tzdata.pp
./default/modules/active/modules/ftp.pp
./default/modules/active/modules/sudo.pp
./default/modules/active/modules/netutils.pp
./default/modules/active/modules/dmidecode.pp
./default/modules/active/modules/finger.pp
./default/modules/active/modules/dhcp.pp
./default/modules/active/modules/gpg.pp
./default/modules/active/modules/java.pp
./default/modules/active/modules/vbetool.pp
./default/modules/active/modules/procmail.pp
./default/modules/active/modules/avahi.pp
./default/modules/active/modules/tcpd.pp
./default/modules/active/modules/postgresql.pp
./default/modules/active/modules/apache.pp
./default/modules/active/modules/apm.pp
./default/modules/active/modules/xserver.pp
./default/modules/active/modules/rpc.pp
./default/modules/active/modules/portmap.pp
./default/modules/active/modules/remotelogin.pp
./default/modules/active/modules/dbus.pp
./default/modules/active/modules/loadkeys.pp
./default/modules/active/modules/unconfined.pp
./default/modules/active/modules/ssh.pp
./default/modules/active/modules/samba.pp
./default/modules/active/modules/rsync.pp
./default/modules/active/policy.kern
./default/modules/active/file_contexts.homedirs
./default/modules/active/file_contexts
./default/modules/active/file_contexts.template
./default/modules/active/seusers.final
./default/modules/active/commit_num
./default/modules/active/base.pp
./restorecond.conf
./config
./semanage.conf
and I run the command
weslab:/etc/selinux# checkpolicy
checkpolicy: loading policy configuration from policy.conf
checkpolicy: unable to open policy.conf
weslab:/etc/selinux# checkpolicy -b /etc/selinux/default/policy/policy.23
checkpolicy: loading policy configuration from
/etc/selinux/default/policy/policy.23
libsepol.policydb_index_others: security: 6 users, 7 roles, 1395 types, 72
bools
libsepol.policydb_index_others: security: 1 sens, 1024 cats
libsepol.policydb_index_others: security: 73 classes, 46378 rules, 20744
cond rules
checkpolicy: MLS policy, but non-MLS is specified
So I want to know what I should do if want to add my selinux policy? Thanks
ALL
Best Regards!
Bai SHuwei
--
Love other people, as same as love yourself!
Don't think all the time, do it by your hands!
Personal URL: http://dslab.lzu.edu.cn:8080/members/baishw/
E-Mail: baishuwei at gmail.com or baishuwei at dslab.lzu.edu.cn
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/selinux-user/attachments/20090904/628ffb8b/attachment.htm>
More information about the Selinux-user
mailing list