Dne 19.2.2012 09:55, Sven Vermeulen napsal(a): > On Sat, Feb 18, 2012 at 11:13:36AM +0100, Tomáš Dobrovolný wrote: >> I have installed new machine using >> http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml . >> Everything was in order. But when I restart in "full function SELinux" >> in permissive mode in my log are following avc errors. I think, I forgot >> to install something, or turn on. > [...] > > From the denials and your kernel configuration, I think you are using an > initrd or initramfs system. Currently, we do not support SELinux when using > initrd/initramfs because the suckers don't play well. There's an open bug on > it, and I hope I can get us with a working initramfs soon. > > But for the mean time, either drop the initramfs/initrd system, or boot in > permissive mode and switch to enforcing during the boot-up (for instance > through an init script in the boot runlevel). > > Wkr, > Sven Vermeulen > >
I have had enabled initrd/initramfs parts in my kernel configuration, but I don't use it to boot my system. I try to disable it completely and I will see. Thanks -- Tomas Dobrovolny
