Re: base-files and /dev

[Russell Coker <russell@coker.com.au>]

On Wed, 24 Jul 2002 15:43, Richard Braakman wrote:
> On Wed, Jul 24, 2002 at 01:44:30PM +0200, Russell Coker wrote:
> > > However, it's labelled the same way as /dev/foo, isn't it?
> > > At least this is what it seems from this line:
> > >
> > > /dev(|/.*)                      system_u:object_r:device_t
> >
> > device_t is the default type for device nodes on a non-devfs system.  On
> > a devfs system that won't be applied to /dev (unless a package claims to
> > own a file or device matching that regex).
>
> So why are you labeling /dev itself as a device node?  That's what I
> don't understand.

device_t is for unspecified/unlabelled device nodes (which means no access) 
and for the /dev directory when not using devfs.

It would probably be best if you just went to #selinux on 
irc.openprojects.net, then looked around a live Debian machine running SE 
Linux to get a feel for how it works.

The people on #selinux will help you understand it.

-- 
I do not get viruses because I do not use MS software.
If you use Outlook then please do not put my email address in your
address-book so that WHEN you get a virus it won't use my address in the
>From field.


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org