diff options
| author | Bill Nottingham <notting@redhat.com> | 2010-06-29 12:53:37 -0400 |
|---|---|---|
| committer | Bill Nottingham <notting@redhat.com> | 2010-06-29 12:53:37 -0400 |
| commit | edbe224afa7d6fe5a9cfccb1b49e661d364a5a01 (patch) | |
| tree | edbe3ceefd0f06b189528d23f7881b5a785e6160 /sysconfig | |
| parent | cf6b7b273229021819a887c54b2a2bd76749e067 (diff) | |
| download | initscripts-edbe224afa7d6fe5a9cfccb1b49e661d364a5a01.tar initscripts-edbe224afa7d6fe5a9cfccb1b49e661d364a5a01.tar.gz initscripts-edbe224afa7d6fe5a9cfccb1b49e661d364a5a01.tar.bz2 initscripts-edbe224afa7d6fe5a9cfccb1b49e661d364a5a01.tar.xz initscripts-edbe224afa7d6fe5a9cfccb1b49e661d364a5a01.zip | |
Don't directly execute bash for single-user mode, as that has SELinux issues. (#540216, #584443, #585053)
If upstart directly runs bash for single-user mode, there's no way for
SELinux to set the proper context (to distinguish it from other init scripts).
Inserting a helper binary in the way allows for this.
While we're changing this, we make it configurable so it's easily possible
for people to use sulogin if they so desire.
Diffstat (limited to 'sysconfig')
| -rw-r--r-- | sysconfig/init | 3 | ||||
| -rw-r--r-- | sysconfig/init.s390 | 3 |
2 files changed, 6 insertions, 0 deletions
diff --git a/sysconfig/init b/sysconfig/init index 959c4d83..1a746088 100644 --- a/sysconfig/init +++ b/sysconfig/init @@ -23,3 +23,6 @@ PROMPT=yes AUTOSWAP=no # What ttys should gettys be started on? ACTIVE_CONSOLES=/dev/tty[1-6] +# Set to '/sbin/sulogin' to prompt for password on single-user mode +# Set to '/sbin/sushell' otherwise +SINGLE=/sbin/sushell diff --git a/sysconfig/init.s390 b/sysconfig/init.s390 index 121b38fc..fdacee05 100644 --- a/sysconfig/init.s390 +++ b/sysconfig/init.s390 @@ -21,3 +21,6 @@ LOGLEVEL=3 PROMPT=no # What ttys should gettys be started on? ACTIVE_CONSOLES=/dev/console +# Set to '/sbin/sulogin' to prompt for password on single-user mode +# Set to '/sbin/sushell' otherwise +SINGLE=/sbin/sushell |