Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [selinux]

NSA Security-Enhanced Linux (SELinux) is an implementation of a flexible mandatory access control architecture in the Linux operating system.

The SELinux architecture provides general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role- Based Access Control, and Multi-Level Security. Background information and technical documentation about SELinux can be found at http://www.nsa.gov/selinux.

681 questions
0
votes
0 answers

Hidden 'neverallow' in selinux policy?

I intend to use 'enforce' selinux mode. First, i boot in permissive mode ( enforcing=0 in kernel cmdline ). After login in system, i collect all selinux policy violation from auditd logs and try to create selinux module to allow such actions, but…
Oleg Korchagin
  • 126
  • 1
  • 9
0
votes
1 answer

google sitemap generator installation selinux

when i trying to install google sitemap generator i received this error Change security context of to system_u:object_r:httpd_modules_t install: WARNING: ignoring --context (-Z); this kernel is not SELinux-enabled Program files successfully copied.…
adnan
  • 101
  • 1
  • 4
0
votes
1 answer

SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0

I kept getting the following notice in apache log when I start apache http server 2.2: SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0 even though I disabled selinux already. what's wrong?
user12145
  • 1,115
  • 6
  • 28
  • 47
0
votes
1 answer

Errors whilst installing kolab

i'm struggling for the past 2 days please help me anyone... [root@mail /]# setup-kolab Please supply a password for the LDAP administrator user 'admin', used to login to the graphical console of 389 Directory server. Administrator password…
gautham
  • 9
  • 3
0
votes
1 answer

Download file without disabling selinux

I am developing a site in PHP on Linux Server where I need to download a file from Windows Server to Linux Machine. I can do it with Some Changes in SeLinux or setting some properties on it, i.e.: % setsebool -P httpd_disable_trans=1 But our client…
Supriya
  • 1
0
votes
1 answer

Lighttpd fails with 403 - Forbidden with SELinux enabled

I've setup a CentOS 6.3 box with lighttpd, php-fpm and I can server both static files and PHP files with SELinux enabled if I leave the lighttpd home directory set to the default (/var/www/lighttpd). However if I change the home directory to…
Brad
  • 619
  • 1
  • 10
  • 28
0
votes
1 answer

After trying to remove SELinux, system doesn't start; shows error of “unable to connect to system bus”

I had SELinux installed on my system which actually was a bit annoying. I tried to remove it. After that my system is unable to start. The error that is showing up is: unable to connect to system bus : Failed to connect to socket…
Arush Salil
  • 11
  • 1
0
votes
4 answers

sshd[4344]: error: ssh_selinux_setup_pty: security_compute_relabel: Invalid argument?

OpenSSH_5.8p1, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008 selinux-policy-2.4.6-338.el5 pam-0.99.6.2-12.el5 SELinux is running in permissive mode: # sestatus SELinux status: enabled SELinuxfs mount: /selinux Current mode:…
quanta
  • 51,413
  • 19
  • 159
  • 217
0
votes
1 answer

Trying to get Apache and nodejs to play nice together, getting "setsebool: SELinux is disabled."?

I am running Ubuntu, and an Apache server. I wanted to try out nodejs, and I wanted to run it through a virtualhost on Apache. I read this article and tried to follow the…
Josh
  • 181
  • 4
0
votes
2 answers

PHP Fatal error: date(): Timezone database is corrupt

I installed wordpress to CentOS from EPEL: yum install wordpress And it can only work if I manually disable SELinux. Otherwise I see this error: PHP Fatal error: date(): Timezone database is corrupt - this should never happen! in…
Antonio
  • 720
  • 4
  • 13
  • 29
0
votes
1 answer

HOW do I get enforcing SElinux and postfix with custom milter to work?

I have an IPv4 setup of postfix on RHEL6 with SElinux in enforcing mode. All my attempts at incorporating opendkim fails miserably unless I leave enforcing mode. The errors I get when SElinux is enforcing: Jan 25 09:57:25 katniss…
MattBianco
  • 597
  • 1
  • 7
  • 23
0
votes
2 answers

I am trying to setup phpMyAdmin to use with a remote MySQL databases on Scientific Linux release 6.2

I am trying to setup phpMyAdmin to use with a remote MySQL databases on Scientific Linux release 6.2. If I use the mysql command line to connect to the remote database it works great but if I use mysqladmin I am getting "#2002 Cannot log in to the…
techsjs2012
  • 545
  • 2
  • 6
  • 10
0
votes
1 answer

Why do I have to do a setenforce 0 to cluster tomcat on Scientific Linux using mod_proxy

Why do I have to do a setenforce 0 to cluster tomcat on Scientific Linux using mod_proxy I am using Scientific Linux release 6.2 and trying to get mod_proxy working with httpd and tomcat. I want to have two tomcat nodes running on the box and so I…
techsjs2012
  • 545
  • 2
  • 6
  • 10
0
votes
2 answers

Can't change mysql data folder CentOS 6

I've a server with CentOS 6.3 and Mysql installed on. I've created two partition, one for system and the bigger one for data mounted in /data Right after installed Mysql I've created the dir /data/mysql then as root I changed the selinux context of…
Gigitsu
  • 103
  • 1
  • 3
0
votes
2 answers

Centos 6.3 PERL CGI selinux file read access

I have a CGI script called index.cgi It is trying to read a log file called 10.128.0.242.2012.sep.20.downloaded.txt under the path /var/log/trafcount/ It appears that it is being blocked by selinux. The audit log shows something like type=AVC…
Steed
  • 19
  • 3
1 2 3
45 46