On 30.11.2016 15:05, Stefan Berger wrote: > From: Stefan Berger <stef...@us.ibm.com> > > To sync with systemd, use the filepath /etc/ima/ima-policy as > the file location for the IMA policy. > > Signed-off-by: Stefan Berger <stef...@linux.vnet.ibm.com> > --- > modules.d/98integrity/ima-policy-load.sh | 7 ++++++- > 1 file changed, 6 insertions(+), 1 deletion(-) > > diff --git a/modules.d/98integrity/ima-policy-load.sh > b/modules.d/98integrity/ima-policy-load.sh > index 85cd3b9..35cfbcc 100755 > --- a/modules.d/98integrity/ima-policy-load.sh > +++ b/modules.d/98integrity/ima-policy-load.sh > @@ -5,10 +5,15 @@ > # Copyright (C) 2011 Politecnico di Torino, Italy > # TORSEC group -- http://security.polito.it > # Roberto Sassu <roberto.sa...@polito.it> > +# > +# Copyright (C) 2016 IBM Corporation > +# > +# Stefan Berger <stef...@linux.vnet.ibm.com> > +# > > IMASECDIR="${SECURITYFSDIR}/ima" > IMACONFIG="${NEWROOT}/etc/sysconfig/ima" > -IMAPOLICY="/etc/sysconfig/ima-policy" > +IMAPOLICY="/etc/ima/ima-policy" > > load_ima_policy() > { >
you might want to change $IMACONFIG also then? _______________________________________________ systemd-devel mailing list systemd-devel@lists.freedesktop.org https://lists.freedesktop.org/mailman/listinfo/systemd-devel