Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: User and Group quota is not working on RHEL6.2 ext4/ext3
Operating Systems Linux Red Hat User and Group quota is not working on RHEL6.2 ext4/ext3 Post 302599111 by rhatdan on Thursday 16th of February 2012 09:14:28 AM
Old 02-16-2012
Ok, what you have allowed is just quota check to create a file in the default_t directory. default_t is the label we give to any directory in / that we don't know about. If another confined domain like apache tries to access content in this directory SELinux will block it. But if all the apps that use this directory are unconfined running as unconfined_t or initrc_t you should not have a problem.
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

how can I check the user's mail quota?

how can I check mail quota, and then how can I send mail to user whose quota get full??? :confused: For this which script must I use? (8 Replies)
Discussion started by: emreatlier
8 Replies

2. Linux

How to set user quota

I've a redhat 9.0 and I want to set a user quota. but the question is where should I start from and How ??? :confused: :confused: :confused: :confused: (2 Replies)
Discussion started by: KaiXiang
2 Replies

3. UNIX for Advanced & Expert Users

Adding quota for a group

***deleted by reborg for rule 1 violation*** (1 Reply)
Discussion started by: manoranjan
1 Replies

4. UNIX for Dummies Questions & Answers

Enable user quota

hi! i would like to enable user quota on my system (FreeBSD 6.2) i've check on enabling user quota here but i still confuse with fstab it shows there: /dev/da1s2g /home ufs rw,userquota 1 2 but my current /etc/fstab : # Device Mountpoint FStype Options ... (1 Reply)
Discussion started by: rdns
1 Replies

5. Red Hat

User quota

Hi, I want to apply the user quota, but i am unable to apply the quota to user. Kindly provide the guide line, so that i can sortout the problem. Step 1: Create partion on device #fdisk /dev/sda (because hard disk is scsi) #n (new partition table) i.e /dev/sda8. #p ( to print the partition... (2 Replies)
Discussion started by: sahu.tapan
2 Replies

6. UNIX for Advanced & Expert Users

lvm user quota

Whats the best method of setting lvm user quota? I saw both of these and I am not sure which to use. Linux File System Quotas Howtos Linux-Vserver With LVM And Quotas - 5dollarwhitebox.org Media Wiki (1 Reply)
Discussion started by: cokedude
1 Replies

7. Red Hat

Convert ext4 to ext3

Is there any way to conver ext4 to ext3 filesystem without formatting the partition/disk .. Had ext3 filesystem and had converted it to ext4 by issuing following command # tune2fs -O extents,uninit_bg,dir_index /dev/sda1 # fsck -pf /dev/sda1 # blkid /dev/sda1 /dev/sda1:... (1 Reply)
Discussion started by: Shirishlnx
1 Replies

8. Linux

Quota issue on user belongs to multiple Group

I have setup a group quota for better disk usage. What i am doing is to setup a quota with Samba share. I created user1,user2 and group project1 which belongs to /home/project1 dir. Quota is implemented on project1 group to write 100 MB on this share and This is working fine if a user1 and user2... (3 Replies)
Discussion started by: sunnysthakur
3 Replies

9. Red Hat

Auto Increasing Quota for User.

Hi, I would like to know wheather we can increase the quota for particular user automatically? I am having requirement to increase the quota only for 2 days in a week. but that shoule be automatically instead of manualy modification. is it possible? (3 Replies)
Discussion started by: manoj.solaris
3 Replies

10. Red Hat

User is a Part of a Group But Group Details Do Not Show the User

Hi, In the following output you can see the the user "richard" is a member on the team/group "developers": # id richard uid=10247(richard) gid=100361(developers) groups=100361(developers),10053(testers) but in the following details of the said group (developers), the said user... (3 Replies)
Discussion started by: indiansoil
3 Replies

LEARN ABOUT LINUX

selinux

selinux(8)                                              SELinux Command Line documentation                                              selinux(8)

NAME

       SELinux - NSA Security-Enhanced Linux (SELinux)

DESCRIPTION

       NSA  Security-Enhanced Linux (SELinux) is an implementation of a flexible mandatory access control architecture in the Linux operating sys-
       tem.  The SELinux architecture provides general support for the enforcement of many kinds of mandatory access control  policies,  including
       those based on the concepts of Type Enforcement(R), Role- Based Access Control, and Multi-Level Security.  Background information and tech-
       nical documentation about SELinux can be found at http://www.nsa.gov/selinux.

       The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled,  whether  SELinux  operates  in
       permissive mode or enforcing mode.  The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these
       options.  The disabled option completely disables the SELinux kernel and application code, leaving the system running without  any  SELinux
       protection.  The permissive option enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by pol-
       icy are permitted but audited.  The enforcing option enables the SELinux code and causes it to enforce access denials as well  as  auditing
       them.  Permissive mode may yield a different set of denials than enforcing mode, both because enforcing mode will prevent an operation from
       proceeding past the first denial and because some application code will fall back to a less privileged mode of operation if denied access.

       The /etc/selinux/config configuration file also controls what policy is active on the system.  SELinux allows for multiple policies  to  be
       installed  on the system, but only one policy may be active at any given time.  At present, two kinds of SELinux policy exist: targeted and
       strict.  The targeted policy is designed as a policy where most processes operate without restrictions,  and  only  specific  services  are
       placed  into  distinct security domains that are confined by the policy.  For example, the user would run in a completely unconfined domain
       while the named daemon or apache daemon would run in a specific domain tailored to its operation.  The strict policy is designed as a  pol-
       icy  where  all  processes are partitioned into fine-grained security domains and confined by policy.  It is anticipated in the future that
       other policies will be created (Multi-Level Security for example).  You can define which policy you will run  by  setting  the  SELINUXTYPE
       environment  variable  within  /etc/selinux/config.   The  corresponding policy configuration for each such policy must be installed in the
       /etc/selinux/SELINUXTYPE/ directories.

       A given SELinux policy can be customized further based on a set of compile-time tunable options and a set of runtime policy booleans.  sys-
       tem-config-securitylevel allows customization of these booleans and tunables.

       Many domains that are protected by SELinux also include SELinux man pages explaining how to customize their policy.

FILE LABELING

       All  files,  directories,  devices  ...  have  a  security  context/label  associated  with them.  These context are stored in the extended
       attributes of the file system.  Problems with SELinux often arise from the file system being mislabeled. This can be caused by booting  the
       machine with a non SELinux kernel.  If you see an error message containing file_t, that is usually a good indicator that you have a serious
       problem with file system labeling.

       The best way to relabel the file system is to create the flag file /.autorelabel and reboot.  system-config-securitylevel,  also  has  this
       capability.  The restorcon/fixfiles commands are also available for relabeling files.

AUTHOR

       This manual page was written by Dan Walsh <dwalsh@redhat.com>.

SEE ALSO

       booleans(8),   setsebool(8),   selinuxenabled(1),   togglesebool(8),   restorecon(8),   setfiles(8),   ftpd_selinux(8),   named_selinux(8),
       rsync_selinux(8), httpd_selinux(8), nfs_selinux(8), samba_selinux(8), kerberos_selinux(8), nis_selinux(8), ypbind_selinux(8)

FILES

       /etc/selinux/config

dwalsh@redhat.com                                                   29 Apr 2005                                                         selinux(8)
All times are GMT -4. The time now is 08:13 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy