Re: Permission problems with amlabel.
2005-01-22 18:34:18
On Sat, 2005-01-22 at 22:31 +0100, Paul Bijnens wrote:
> Erik P. Olsen wrote:
>
> > [root@epo full]# su amanda -c "amlabel -f full full01"
> > rewinding, reading label full01
> > rewinding, writing label full01, checking labelamlabel: couldn't write
> > tapelist: Permission denied
> >
> > Well, I thought it was permissions for the file tapelist and changed
> > that to full permission, but still got the same error.
> >
> > I then saw syslog had the following message:
> >
> > Jan 22 21:13:39 epo su(pam_unix)[9298]: session opened for user amanda
> > by erik(uid=0)
> > Jan 22 21:13:39 epo su[9298]: Warning! Could not relabel /dev/pts/1
> > with user_u:object_r:devpts_t, not relabeling.Operation not permitted
> > Jan 22 21:13:39 epo su(pam_unix)[9298]: session closed for user amanda
> >
> > I have no idea whatsoever what this is all about. I would be grateful if
> > someone would explain to me what the heck it is and how I can satisfy
> > amlabel?
>
> FC3 ?
Yes, I run FC3.
>
> The "relabel" in syslog has nothing to do with amlabel. You seem to
> have SElinux enabled. You have a problem with "su" being restricted
> by selinux.
Very interesting. I have just today updated FC3 with some selinux
packages. Perhaps they are the culprits.
> The fastest way is to disable selinux in /etc/config/selinux -- this
> needs a reboot.
> The better way is study selinux, and configure the system to allow
> what you want. Studying takes a few days, at least...
Maybe I should disable selinux until I understand how I can fix my
problem. I am most anxious to start backing my system up.
--
Regards,
Erik P. Olsen
|
|
|