[Dovecot] SELinux
Kenneth Porter
shiva at sewingwitch.com
Thu Jun 11 00:38:54 EEST 2009
--On Wednesday, June 10, 2009 12:50 PM +0200 henry ritzlmayr
<dovecot at rc0.at> wrote:
> Am Montag, den 08.06.2009, 12:58 -0700 schrieb Kenneth Porter:
>> I've temporarily got SELinux set to permissive mode on a fresh install
>> on CentOS 5. It was blocking Dovecot's access to ~/mail because the
>> files were labeled file_t. What's the correct way to label these?
>>
>
> restorecon <path>
A naive run on /home/ken/mail didn't change the file types. I had to run
"restorecon /home/ken/mail/*". I'll have to see how to do that recursively
so all files under /home get labeled. (I restored a bunch of home
directories from a backup of a Fedora Core 2 system, which predates SELinux
and hence has no labeling.)
The new labels on the mbox files are user_u:object_r:user_home_t. I'll have
to see if the default CentOS 5 policy is set to be happy with that.
More information about the dovecot
mailing list