Michael C Thompson wrote:
Hey all,
Currently, I can't seem to be able to transition to SystemHigh then
from the SystemHigh shell, transition to SystemLow again.
I have done the following:
newrole -r auditadm_r -l SystemHigh
<password>
<new shell>
newrole -l SystemLow
<password>
Error: incorrect password for root
The password used is indeed the correct password. Regardless of this
being an error in the policy, this sounds like a bug for the reporting
of the reason for denial. I imagine it should say something about an
invalid context change, if indeed that is what is happening.
Is the policy supposed to permit an elevation of privilages (in terms
of MLS), and then from that elevated shell, spawn a new lesser
privilaged shell?
Mike
Current policy in rawhide should allow this.
--
redhat-lspp mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-lspp
--
redhat-lspp mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-lspp
