Displaying 2 results from an estimated 2 matches for "semanage_expand_sandbox".
2010 Mar 19
0
How to disable selinux protection interfering with pppd? I tried audit2allow, but policy does not load. Is there an seboolean?
..._t:file read;
However, I am unable to load this module due to conflict with another policy:
# semodule -i fixdialinserver.pp
libsepol.check_assertion_helper: assertion on line 0 violated by allow
pppd_t shadow_t:file { read };
libsepol.check_assertions: 1 assertion violations occured
libsemanage.semanage_expand_sandbox: Expand module failed
semodule: Failed!
#
Is there an seboolean I can tweak to allow me to load this policy?
Thanks,
Aleksey
2010 May 05
0
pppd does not work if SELinux is turned on.
...unable to load this module due to conflict with another policy:
>
> # semodule -i fixdialinserver.pp
> libsepol.check_assertion_helper: assertion on line 0 violated by allow
> pppd_t shadow_t:file { read };
> libsepol.check_assertions: 1 assertion violations occured
> libsemanage.semanage_expand_sandbox: Expand module failed
> semodule: ?Failed!
> #
>
> Is there an seboolean I can tweak to allow me to load this policy?
I used "getsebool -a |grep ppp" to find and enable the following three
selinux booleans:
pppd_can_insmod --> on
pppd_disable_trans --> on
pppd_for_user...