Traditionally the file contexts have explicitely excluded relabelling anything under /tmp. The reason for this is that if some highly classified data is in a file in /tmp it would not be appropriate to relabel it to a default label (of which incidentally there really isn't one for strict or MLS policies and even for targeted there is no single label that works in all situations). So a "fixfiles relabel" operation will offer to remove all files under /tmp
Thanks to rjc for letting me quote you in this article. You can view his blog at: http://etbe.coker.com.au/
Abonneren op:
Reacties posten (Atom)
Geen opmerkingen:
Een reactie posten