On 04/24/2017 05:30 PM, Umair Sarfraz wrote:
Hi,
So, I have been trying to play around with MLS (which I have
successfully configured) on CentOS 7. I'm aiming to apply some
security policies (categorization of docker containers) via MLS, but I
can't seem to access and get correct labels of docker daemon if I am
in `enforcing` mode. However, changing it to permissive mode allow me
to access the service and have correct label. In enforcing mode, I get
unlablled_t on the docker dirs.
I am fairly new to SELinux so please excuse me if this is a silly
question but I am pretty sure I am missing something here. Any sort of
help would be appreciated. Thanks.
--
Umair Sarfraz
Do you have container-selinux installed?
