On Sun, 10 Apr 2005 15:10:40 +0200 Julien Le Houérou <julien_lh@xxxxxxxx> wrote: > Sjoerd Mullender wrote: > > >I'm trying to enable SELinux on my FC3 system and I followed the manual > >instructions in the FAQ* (I don't want to use > >system-config-securitylevel since it overwrites my iptables setup): > >/etc/selinux/config contains SELINUX=permissive and SELINUXTYPE=targeted; > >I have touched /.autorelabel; > >I have rebooted (several times, not all of them related to this issue); > >and when the system was rebooting, there was no noticeable delay while > >the files were being relabeled and /.autorelabel still exists. Also: > ># sestatus -v > >SELinux status: disabled > > > >In /var/log/messages and in the dmesg output, I don't see anything about > >SELinux being disabled. I do see the following lines (the selinux=1 was > >my latest attempt--it didn't change anything): > > > ># dmesg | grep -i selinux > >Kernel command line: ro root=LABEL=/ apm=off acpi=on selinux=1 > >SELinux: Initializing. > >SELinux: Starting in permissive mode > >selinux_register_security: Registering secondary module capability > >SELinux: Registering netfilter hooks > > > >What am I doing wrong? > > > >*) http://fedora.redhat.com/docs/selinux-faq-fc3/index.html#id2825232 > > > > > > > What if there is no /etc/selinux/ nor /etc/sysconfig/selinux ?? i don't > have any of them my system!! > Have you installed selinux-policy-targeted and selinux-policy-strict? They provide /etc/selinux files. /etc/sysconfig/selinux is a symlink to /etc/selinux/config. -- Richard E Miles Federal Way WA. USA registered linux user 46097
