From: walid.fakim@cgi.com (Fakim, Walid)
Date: Tue, 7 Feb 2017 14:50:45 +0000
Subject: [refpolicy] run_init on RHEL 6.x
Message-ID: <67130EC7AFA3FE4E9290B03665B351F40A503B@SE-EX021.groupinfra.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Hi All,

I have implemented some policies and finding that when users are restarting services the wrong user context is being used and the process runs as unconfined_u (as expected). We are not doing any user confinement.
Ideally, I want the processes to run as system_u. Using run_init fixes this issue but is there any other way to achieve this on RHEL 6.x without user confinement?

I am using Sven's SELinux System Administration (1st Edition) Chapter 3 as my reference.

Thanks.

Best Regards,

Walid Fakim

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.tresys.com/pipermail/refpolicy/attachments/20170207/335533c7/attachment.html