From: justinmattock@gmail.com (Justin P. Mattock)
Date: Tue, 09 Mar 2010 14:29:19 -0800
Subject: [refpolicy] what to do: libsemanage.get_home_dirs:
In-Reply-To: <4B96B78A.4020801@redhat.com>
References: <dd18b0c31003091001n5b5ab089g3829823e256ae86e@mail.gmail.com>
	<4B96B78A.4020801@redhat.com>
Message-ID: <1268173759.4289.2.camel@linux-qbdl.site>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Tue, 2010-03-09 at 16:03 -0500, Daniel J Walsh wrote:
> On 03/09/2010 01:01 PM, Justin Mattock wrote:
> > with the latest policy on open suse 11.2
> > I'm seeing this after building the policy:
> > libsemanage.get_home_dirs: nobody homedir /var/lib/nobody or its
> > parent directory conflicts with a file context already specified in
> > the policy.  This usually indicates an incorrectly defined system
> > account.  If it is a system account please make sure its uid is less
> > than 1000 or its login shell is /sbin/nologin.
> >
> > with using an older policy on this system, I never saw this.
> >
> > what to do?
> >
> >    
> /var/lib/nobody record in /etc/passwd needs to have a shell of 
> /bin/false or /sbin/nologin or a UID < 500.
> 
> 

cool thanks..
I'll google a bit before making any changes.
usermod -u 500 login seems to be it,
but I also seen things in the user/group gui
menu which might be safer to try.

Justin P. Mattock