Re: [CentOS] SELinux vs. virsh

2014-08-29 Thread Bill Gee
On Thursday, August 28, 2014 16:07:18 Jonathan Billings wrote: On Thu, Aug 28, 2014 at 10:29:50AM -0500, Bill Gee wrote: Hmmm... OK, let's go back to my original goal. I want logwatch to include the output of hddtemp /dev/sda and virsh --list all in its daily reports. How is that to

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Bill Gee
On Sunday, August 24, 2014 06:45:14 Daniel J Walsh wrote: On 08/23/2014 10:45 AM, Bill Gee wrote: On Friday, August 22, 2014 08:50:26 Daniel J Walsh wrote: On 08/21/2014 10:03 AM, Bill Gee wrote: On Thursday, August 21, 2014 12:00:03 centos-requ...@centos.org wrote: Re: [CentOS] SELinux

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Jonathan Billings
On Thu, Aug 28, 2014 at 07:05:49AM -0500, Bill Gee wrote: Another curious thing is that it all works perfectly when I run-parts /etc/cron.daily from a root login. Why should SELinux regard that as different from when it is run by cron??? Cron runs processes in a different SELinux domain

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Bill Gee
On Thursday, August 28, 2014 08:24:32 Jonathan Billings wrote: On Thu, Aug 28, 2014 at 07:05:49AM -0500, Bill Gee wrote: Another curious thing is that it all works perfectly when I run-parts /etc/cron.daily from a root login. Why should SELinux regard that as different from when it is run

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Jonathan Billings
On Thu, Aug 28, 2014 at 08:16:58AM -0500, Bill Gee wrote: But that means that SELinux contexts are NOT stable ... They are NOT the same for all instances of a process. It seems to me that defeats the whole purpose of SELinux. I think you're confusing the account the process is running under

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Bill Gee
On Thursday, August 28, 2014 10:20:06 Jonathan Billings wrote: On Thu, Aug 28, 2014 at 08:16:58AM -0500, Bill Gee wrote: But that means that SELinux contexts are NOT stable ... They are NOT the same for all instances of a process. It seems to me that defeats the whole purpose of SELinux.

Re: [CentOS] SELinux vs. virsh

2014-08-28 Thread Jonathan Billings
On Thu, Aug 28, 2014 at 10:29:50AM -0500, Bill Gee wrote: Hmmm... OK, let's go back to my original goal. I want logwatch to include the output of hddtemp /dev/sda and virsh --list all in its daily reports. How is that to be accomplished? Based on what you said above, I think the way

Re: [CentOS] SELinux vs. virsh

2014-08-25 Thread Bill Gee
On Sunday, August 24, 2014 06:45:14 Daniel J Walsh wrote: On 08/23/2014 10:45 AM, Bill Gee wrote: On Friday, August 22, 2014 08:50:26 Daniel J Walsh wrote: On 08/21/2014 10:03 AM, Bill Gee wrote: On Thursday, August 21, 2014 12:00:03 centos-requ...@centos.org wrote: Re: [CentOS] SELinux

Re: [CentOS] SELinux vs. virsh

2014-08-24 Thread Daniel J Walsh
On 08/23/2014 10:45 AM, Bill Gee wrote: On Friday, August 22, 2014 08:50:26 Daniel J Walsh wrote: On 08/21/2014 10:03 AM, Bill Gee wrote: On Thursday, August 21, 2014 12:00:03 centos-requ...@centos.org wrote: Re: [CentOS] SELinux vs. logwatch and virsh From: Daniel J Walsh dwa...@redhat.com

[CentOS] SELinux vs. virsh

2014-08-23 Thread Bill Gee
On Friday, August 22, 2014 08:50:26 Daniel J Walsh wrote: On 08/21/2014 10:03 AM, Bill Gee wrote: On Thursday, August 21, 2014 12:00:03 centos-requ...@centos.org wrote: Re: [CentOS] SELinux vs. logwatch and virsh From: Daniel J Walsh dwa...@redhat.com To: CentOS mailing list