[prev in list] [next in list] [prev in thread] [next in thread]
List: centos-docs
Subject: [CentOS-docs] Xen image context
From: danieldk () pobox ! com (Daniel de Kok)
Date: 2007-04-26 8:27:51
Message-ID: 20070426102722.177e7e70.danieldk () pobox ! com
[Download RAW message or body]
Hi,
What about adding something along these lines to the Wiki?:
---
Xen images
The targeted SELinux policy for Xen requires Xen disk images to have
the xen_image_t context. By default, two directories are defined with
this context:
/var/lib/xen/images(/.*)? system_u:object_r:xen_image_t:s0
/xen(/.*)? system_u:object_r:xen_image_t:s0
You can also explicitly set the context with chcon, or add a local file
context customization if you want to keep the correct context when
contexts are restored. For instance, I like to keep my images
in /srv/xen. The following commands prepare this directory for use of
Xen images:
# mkdir -p /srv/xen
# semanage fcontext -a -t xen_image_t "/srv/xen(/.*)?"
This will automatically add a relevant file context rule
to /etc/selinux/targeted/contexts/files/file_contexts.local and reload
the context.
---
If so, where? A SELinux tips and tricks page? Xen tips and tricks page?
-- Daniel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic