On Wed, 2007-08-08 at 13:07 -0500, Jason L Tibbitts III wrote:
"FT" == Forrest Taylor ftaylor@redhat.com writes:
FT> Where you add a -a to add, replace that with a -d to delete, or a FT> -m to modify.
Yeah, that was overly easy. I guess I was confused by how I'm supposed to know what "NAME" is, especially for fcontext rules where you give a pattern. (NAME seems to be the pattern itself.)
I s there a simple way to know if an fcontext pattern matches anything so I can tell if I'm going to screw my system before deleting one?
Do a -l to list it, and use grep to match your rule ;o) semanage won't let you remove a rule that is not there. Nor will it let you add a rule that already exists (you must modify it [-m]).
Forrest