Daniel J Walsh wrote: > I have tried this patch out and it seems to work correctly. The only > other question I would have is should I change the user component of the > context?
I've tried out the patch too and if I understand how its supposed to work, it seems to work correctly for me as well. When I create a user, do a restorecon on the user's home directory and then log in, I get a home directory and tmp directories as I expect. This works for admin users too. If I do a newrole to change my level, I get a new set of directories. Should I also get a new set of directories if I use newrole to switch roles? I don't (and not sure I want to) but I'm wondering if I'm supposed to since the man page says its polyinstantiates based on "context" and when I change roles, my context changes, right? BTW, I'm running it without any of the lspp_policy module from the Klaus' lspp kickstart rpm so as far as I can tell, we don't need any of the polyinstantiation fixes in the lspp_policy.te file and we don't need the semanage commands related to polyinstantiation in the lspp-eal4-config script. -- ljk -- redhat-lspp mailing list [email protected] https://www.redhat.com/mailman/listinfo/redhat-lspp
