Re: User instances of systemd and SELinux

2016-08-15 Thread Daniel J Walsh
On 08/15/2016 04:10 PM, Andrew Lutomirski wrote: > On Mon, Aug 15, 2016 at 12:59 PM, Daniel J Walsh wrote: >> >> On 08/10/2016 03:42 PM, Andrew Lutomirski wrote: >>> On Wed, Aug 10, 2016 at 12:26 PM, Zbigniew Jędrzejewski-Szmek >>> wrote: On Tue, Aug

Re: User instances of systemd and SELinux

2016-08-15 Thread Andrew Lutomirski
On Mon, Aug 15, 2016 at 12:59 PM, Daniel J Walsh wrote: > > > On 08/10/2016 03:42 PM, Andrew Lutomirski wrote: >> On Wed, Aug 10, 2016 at 12:26 PM, Zbigniew Jędrzejewski-Szmek >> wrote: >>> On Tue, Aug 09, 2016 at 01:32:10PM -0400, Daniel J Walsh wrote:

Re: User instances of systemd and SELinux

2016-08-15 Thread Daniel J Walsh
On 08/10/2016 03:42 PM, Andrew Lutomirski wrote: > On Wed, Aug 10, 2016 at 12:26 PM, Zbigniew Jędrzejewski-Szmek > wrote: >> On Tue, Aug 09, 2016 at 01:32:10PM -0400, Daniel J Walsh wrote: >>> >>> On 08/09/2016 10:24 AM, Michal Sekletar wrote: Hi all, Most of

Re: User instances of systemd and SELinux

2016-08-10 Thread Andrew Lutomirski
On Wed, Aug 10, 2016 at 12:26 PM, Zbigniew Jędrzejewski-Szmek wrote: > On Tue, Aug 09, 2016 at 01:32:10PM -0400, Daniel J Walsh wrote: >> >> >> On 08/09/2016 10:24 AM, Michal Sekletar wrote: >> > Hi all, >> > >> > Most of you are probably aware that systemd except running as

Re: User instances of systemd and SELinux

2016-08-10 Thread Adam Williamson
On Wed, 2016-08-10 at 19:26 +, Zbigniew Jędrzejewski-Szmek wrote: > > For example if I login as unconfined_t and want to run a service as > > httpd_t, then I need to be able to transition from > > unconfined_t to httpd_t. As long as systemd-user is running as the user > > domain, then

Re: User instances of systemd and SELinux

2016-08-10 Thread Zbigniew Jędrzejewski-Szmek
On Tue, Aug 09, 2016 at 01:32:10PM -0400, Daniel J Walsh wrote: > > > On 08/09/2016 10:24 AM, Michal Sekletar wrote: > > Hi all, > > > > Most of you are probably aware that systemd except running as PID 1 > > also runs inside user sessions. This allow users to define their own > > "user

Re: User instances of systemd and SELinux

2016-08-09 Thread Daniel J Walsh
On 08/09/2016 10:24 AM, Michal Sekletar wrote: > Hi all, > > Most of you are probably aware that systemd except running as PID 1 > also runs inside user sessions. This allow users to define their own > "user services" and start up various scripts and background processes > right after logging

User instances of systemd and SELinux

2016-08-09 Thread Michal Sekletar
Hi all, Most of you are probably aware that systemd except running as PID 1 also runs inside user sessions. This allow users to define their own "user services" and start up various scripts and background processes right after logging in. In default targeted policy PID 1 runs with init_t SELinux