From: justinmattock@gmail.com (Justin P. Mattock) Date: Tue, 09 Mar 2010 14:29:19 -0800 Subject: [refpolicy] what to do: libsemanage.get_home_dirs: In-Reply-To: <4B96B78A.4020801@redhat.com> References: <4B96B78A.4020801@redhat.com> Message-ID: <1268173759.4289.2.camel@linux-qbdl.site> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On Tue, 2010-03-09 at 16:03 -0500, Daniel J Walsh wrote: > On 03/09/2010 01:01 PM, Justin Mattock wrote: > > with the latest policy on open suse 11.2 > > I'm seeing this after building the policy: > > libsemanage.get_home_dirs: nobody homedir /var/lib/nobody or its > > parent directory conflicts with a file context already specified in > > the policy. This usually indicates an incorrectly defined system > > account. If it is a system account please make sure its uid is less > > than 1000 or its login shell is /sbin/nologin. > > > > with using an older policy on this system, I never saw this. > > > > what to do? > > > > > /var/lib/nobody record in /etc/passwd needs to have a shell of > /bin/false or /sbin/nologin or a UID < 500. > > cool thanks.. I'll google a bit before making any changes. usermod -u 500 login seems to be it, but I also seen things in the user/group gui menu which might be safer to try. Justin P. Mattock