Just an update . . . I tried upgrading kernel to 2.6.11.11
(kernel.org) but was unsuccessful (due to i2c and gcc 4.0 issue). So I
settled for the one on the fedora development repository. But that
didn't help, upgraded other stuff too like selinux-policy-targeted and
initscripts. Beginning to pull my hair out at this point.
Tried relabeling filesystem per selinux faq. Used fixfiles restore,
which looked promising because now ls -Z on my /home actually showed
some stuff. Now the big test:
# touch /home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw-r--r-- root root
/home/postgres/pgstartup.log
# chown postgres:postgres /home/postgres/pgstartup.log
# chmod go-rwx /home/postgres/pgstartup.log
# chcon -u system_u -r object_r -t postgresql_log_t
/home/postgres/pgstartup.log
chcon: can't apply partial context to unlabeled file
/home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw------- postgres postgres
/home/postgres/pgstartup.log
Argh . . . But found this odd thing while googling:
# touch /home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw-r--r-- root root
/home/postgres/pgstartup.log
# chown postgres:postgres /home/postgres/pgstartup.log
# chmod go-rwx /home/postgres/pgstartup.log
# <bold>chcon system_u:object_r:postgresql_log_t
/home/postgres/pgstartup.log</bold>
# ls -Z /home/postgres/pgstartup.log
-rw------- postgres postgres system_u:object_r:postgresql_log_t
/home/postgres/pgstartup.log
Voila, it works. I kind of have to move on now. Since this is just a
development box, this will do for now. When the final Fedora Core 4
comes out will install that and see what happens.
Thank very much again for the great help.
dianne
Just an update . . . I tried upgrading kernel to 2.6.11.11 (kernel.org)
but was unsuccessful (due to i2c and gcc 4.0 issue). So I settled for
the one on the fedora development repository. But that didn't help,
upgraded other stuff too like selinux-policy-targeted and initscripts.
Beginning to pull my hair out at this point.
Tried relabeling filesystem per selinux faq. Used fixfiles restore,
which looked promising because now ls -Z on my /home actually showed
some stuff. Now the big test:
# touch /home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw-r--r-- root root
/home/postgres/pgstartup.log
# chown postgres:postgres /home/postgres/pgstartup.log
# chmod go-rwx /home/postgres/pgstartup.log
# chcon -u system_u -r object_r -t postgresql_log_t
/home/postgres/pgstartup.log
chcon: can't apply partial context to unlabeled file
/home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw------- postgres postgres
/home/postgres/pgstartup.log
Argh . . . But found this odd thing while googling:
# touch /home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw-r--r-- root root
/home/postgres/pgstartup.log
# chown postgres:postgres /home/postgres/pgstartup.log
# chmod go-rwx /home/postgres/pgstartup.log
# chcon system_u:object_r:postgresql_log_t /home/postgres/pgstartup.log
# ls -Z /home/postgres/pgstartup.log
-rw------- postgres postgres system_u:object_r:postgresql_log_t
/home/postgres/pgstartup.log
Voila, it works. I kind of have to move on now. Since this is just a
development box, this will do for now. When the final Fedora Core 4
comes out will install that and see what happens.
Thank very much again for the great help.
dianne