Your message dated Sun, 1 Jan 2017 18:23:10 +0100
with message-id <[email protected]>
and subject line Re: Bug#849858: splt systemd tmpfile configuration files into
respective packages
has caused the Debian Bug report #849858,
regarding splt systemd tmpfile configuration files into respective packages
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
849858: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849858
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: systemd
Version: 232-8
Can the configuration files under /usr/lib/tmpfiles.d/ be distributed
be their respective packages.
Like:
Configuration file Package
colord.conf colord
dbus.conf dbus
gvfsd-fuse-tmpfiles.conf gvfs or gvfs-common
lvm2.conf lvm2
man-db.conf man-db
openvpn.conf openvpn
sshd.conf openssh-server
x11.conf x11-common
The reason why that's bothering me is, I am using SELinux on a
headless debian, i.e. I have no xserver/x11 package installed.
Therefore I have no SELinux modules for xserver/x11 loaded.
But because systemd-tmpfiles creates the temporary files for x11 and I
have no SELinux context for them, I get these output when relabeling
the filesystem:
root@debianSE:/root/dtdnssync# restorecon -vv -R -n /
Warning no default label for /tmp/.XIM-unix
Warning no default label for /tmp/.X11-unix
Warning no default label for /tmp/.Test-unix
Warning no default label for /tmp/.ICE-unix
Warning no default label for /tmp/.font-unix
It's not breaking anything but it's noisy.
Kindly Regards,
Christian Göttsche
--- End Message ---
--- Begin Message ---
Am 01.01.2017 um 17:51 schrieb cgzones:
> Your right, the default SELinux policy package for Debian,
> selinux-policy-default, ships the xserver module and loads it.
> But it not only loads the xserver module by default, it loads all ~377
> modules (that's an issue for the refpolicy package).
> For a mix of performance, security, handsomeness and clarity I only
> load the for my system needed modules and xserver is not one of them.
Ok, would have been good to have known this from the beginning that it's
a custom local configuration issue.
In a case like your's I would recommend to simply create an empty
/etc/tmpfiles.d/x11.conf to override the system provided one.
After all, you also override the system provided selinux policy.
Regards,
Michael
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
signature.asc
Description: OpenPGP digital signature
--- End Message ---
