We are planning to migrate to EL6 and came across this issue that I am trying to get around. Current system spec: Samba-3.5.10 Selinux-policy-3.7.19 Policycoreutils-2.0.83 Autofs-5.0.5 In EL5 we disabled selinux for samba using 'smbd_disable_trans' directive and the shares work fine. On RHEL6 I couldn't find this Boolean. Is there an alternate directive that accomplishes same? The mounts that I want to share using samba have "autofs_t" context and I don't want to change it. Any recommendations?
In RHEL 6, disable_trans booleans were replaced by permissive domains. I'd suggest that you take a look at page 60 of the RHEL Security-Enhanced Linux documentation for more information. docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/pdf/Security-Enhanced_Linux/Red_Hat_Enterprise_Linux-6-Security-Enhanced_Linux-en-US.pdf Andrew Philipoff Infrastructure Manager UCSF Department of Medicine - IT Services 415-476-1344 -----Original Message----- From: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org] On Behalf Of Prashanth Sundaram Sent: Tuesday, February 21, 2012 12:52 PM To: samba at lists.samba.org Subject: [Samba] SELinux Samba Exception on EL6 We are planning to migrate to EL6 and came across this issue that I am trying to get around. Current system spec: Samba-3.5.10 Selinux-policy-3.7.19 Policycoreutils-2.0.83 Autofs-5.0.5 In EL5 we disabled selinux for samba using 'smbd_disable_trans' directive and the shares work fine. On RHEL6 I couldn't find this Boolean. Is there an alternate directive that accomplishes same? The mounts that I want to share using samba have "autofs_t" context and I don't want to change it. Any recommendations? -- To unsubscribe from this list go to the following URL and read the instructions: lists.samba.org/mailman/options/samba