From: dwalsh@redhat.com (Daniel J Walsh)
Date: Sat, 13 Feb 2010 06:52:12 -0500
Subject: [refpolicy] services_rpc.patch
In-Reply-To: <1266007293.11004.37.camel@gorn.columbia.tresys.com>
References: <4AFC84B2.204@redhat.com>
	<1266007293.11004.37.camel@gorn.columbia.tresys.com>
Message-ID: <4B76926C.7070600@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 02/12/2010 03:41 PM, Christopher J. PeBenito wrote:
> On Thu, 2009-11-12 at 16:57 -0500, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F12/services_rpc.patch
>>
>> cleanup
> 
> Why would this be doing raw reads on removable devices?
> 
> Why is a user_home_dir_t -> user_home_t filetrans required for nfsd_t?
> 
Perhaps you homedir is mounted on a remove machine and you create content in the toplevel.  Does this get labeled as
user_home_t as it should, or does it get labeled user_home_dir_t?   I think this was an effort to fix this. but I am not sure that 
it works, since I think the kernel_t actually creates the content, not nfsd_t.

If someone could setup an experiment.