fixes for CentOS 7

faiproject · May 15, 2015 · 4619c2b · 4619c2b
1 parent d3202cf
commit 4619c2b
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 5 deletions.
diff --git a/examples/simple/files/etc/selinux/config/CENTOS b/examples/simple/files/etc/selinux/config/CENTOS
@@ -3,12 +3,10 @@
 #       enforcing - SELinux security policy is enforced.
 #       permissive - SELinux prints warnings instead of enforcing.
 #       disabled - No SELinux policy is loaded.
-SELINUX=disabled
+SELINUX=enforcing
 # SELINUXTYPE= can take one of these two values:
 #       targeted - Only targeted network daemons are protected.
 #       strict - Full SELinux protection.
 #       mls - Multi Level Security protection.
 SELINUXTYPE=targeted
 # SETLOCALDEFS= Check local definition changes
-SETLOCALDEFS=0
-
diff --git a/examples/simple/package_config/CENTOS b/examples/simple/package_config/CENTOS
@@ -4,7 +4,7 @@ core
 PACKAGES yumgroup XORG
 #gnome-desktop base-x # slc5/CentOS 5
 #basic-desktop x11 fonts #slc6/CentOS 6
-gnome # CentOS 7
+gnome-desktop # CentOS 7
 
 PACKAGES yumi
 authconfig
@@ -22,4 +22,7 @@ screen
 unzip
 which
 nfs-utils
-sendmail
+pakchois
+ncurses-base # currently missing in the base file
+
+#sendmail # only for C5 and C6
diff --git a/examples/simple/scripts/CENTOS/10-security b/examples/simple/scripts/CENTOS/10-security
@@ -1,6 +1,7 @@
 #! /bin/bash
 
 # (c) Michael Goetze, 2010-11, mgoetze@mgoetze.net
+# Thomas Lange, 2015
 
 error=0; trap 'error=$(($?>$error?$?:$error))' ERR # save maximum error code
 
@@ -9,5 +10,7 @@ $ROOTCMD authconfig --enableshadow --enablemd5 \
 $ROOTCMD usermod -p $ROOTPW root
 
 fcopy -v /etc/selinux/config
+$ROOTCMD fixfiles onboot # this fixes the SELinux security contexts during the first boot
+chmod a+rx $target
 
 exit $error