Displaying 20 results from an estimated 500 matches similar to: "SELinux targeted - named, portmap and syslogd errors"
2006 Nov 17
1
Problem with SeLinux and syslogd
Hello!
on my centos 4.4 i have enable selinux, but after this change syslogd
can't no more run:
# /etc/init.d/syslog restart
Shutting down kernel logger: [ OK ]
Shutting down system logger: [FAILED]
Starting system logger: syslogd: error while loading shared libraries:
libc.so.6: cannot open shared object file: No such file or
2011 Sep 08
1
Trying to understand SELinux MSG
Hello,
I received the below SELinux message today and I am trying to figure out what
caused it. I see what it says under Allow Access but I am not sure this is
what I really want to do without know why it happened in the first place.
What should I be looking at to understand what or why this has happened?
Any help I would be most grateful for.
Here is the output form SELinux
SUMMARY:
2008 Jul 24
1
selinux & httpd & portmap
Having problems starting httpd & portmapper
#service httpd start
/usr/sbin/httpd: error while loading shared libraries: libm.so.6: cannot
open shared object file: No such file or directory
and I traced it to selinux, which I had just turned on for the first time:
# sestatus
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode:
2008 Nov 30
4
Apache, SELinux, and document root on a different partition
I want to put the document root for an application on a separate paritition
that has more space. When I try to configure this I can't access the files
in the new location. I've got the SELinux attributes set on the directory
and its files, so I'm thinking it's something about the parent path that
SELinux doesn't like, but I don't know where that's handled.
My
2007 Aug 16
1
SELinux questions, upon restarting BIND
Hi all,
On my newly up-and-running nameserver (CentOS 5), I noticed the
following alerts in /var/log/messages after restarting BIND. (lines
inserted to aid in reading).
As I'm new to SELinux, I'm hoping for some pointers on 1) if this is an
issue which simply *must* be addressed, or if it's something I should
live with, and 2) how to eliminate the warming messages without
sacrificing
2009 Jan 08
2
Restoring individual messages from a backup into a Maildir setup?
We have a user who deleted IMAP folders from his account, so I simply
tried to restore the folder ".FolderName" from our backup. I checked
that file/folder ownership was the same as the original, but the Dovecot
IMAP server is throwing errors at the client.
I've tried copying the individual message files from the "cur" folders
in the backup directory, but Dovecot
2012 Jan 05
6
SELinux and access across 'similar types'
http://wiki.centos.org/HowTos/SELinux
says:
"Access is only allowed between similar types, so Apache running as
httpd_t can read /var/www/html/index.html of type httpd_sys_content_t."
however the doc doesn't define what "similar types" means. I assumed it
just meant "beginning with the same prefix". However that can't be
right because on my system with
2009 Aug 11
1
selinux question and answer
This is continuing/summarising a rather long discussion that happened
on IRC ...
We talked to some SELinux experts about what was required to make
SELinux work with libguestfs, and it seems reasonably simple to load
the policy from the guest filesystem.
All that needs to be done is to mount the guest disks up and then run:
sh "/usr/sbin/load_policy -i"
That command also mounts up
2009 Aug 15
1
Confused about named, chroot, and tmp files.
Any ideas why bind is putting the tmp files in the [chroot]/var/named directory
and not in /tmp or /var/tmp?
[root at devserver21 chroot]# Aug 15 14:08:21 devserver21 named[5101]: loading
configuration from '/etc/named.conf'
Aug 15 14:08:21 devserver21 named: named reload succeeded
Aug 15 14:08:21 devserver21 named[5101]: dumping master file: tmp-XXXXQ5X9mC:
open: permission denied
Aug 15
2011 Jan 31
1
Squid and SELinux
Hi.
I'm trying to setup squid with SELinux, the problem i encounter is taht
i want to add another directory for cache, in this system we have a home
partition with huge space, i create a squid dir and add the path with
semanage:
semanage fcontext -a -t squid_cache_t '/home/squid(/.*)?'
i check the files and are in the good context:
drwxr-xr-x squid squid
2008 Aug 01
2
BackupPC 3.1.0 on CentOS 5.2 triggers SE Linux denial
Hi. I've installed BackupPC 3.1.0 from Testing repository, to Cent
OS 5.2 x86_64, and I am hitting an SE Linux denial - the httpd cannot
talk to the BackupPC socket:
type=AVC msg=audit(07/31/2008 17:18:53.623:410) : avc: denied {
connectto } for pid=11767 comm=httpd
path=/var/log/BackupPC/BackupPC.sock
scontext=user_u:system_r:httpd_t:s0
tcontext=user_u:system_r:initrc_t:s0
2007 Mar 12
2
selinux disable but still working
I have some centos 4.4 server. i have disable selinux for some software
problem:
# cat /etc/selinux/config
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - SELinux is fully disabled.
SELINUX=disable
#
2011 Apr 25
2
Samba can't access dir - SELinux problem?
Hello,
I was using CentOS 5.5 as a "playground" VM at my WinXP notebook
and now I'm migrating to a new CentOS 5.6 install
and everything has worked well - except samba.
I have this very permissive config to export my ~/src dir:
# cat /etc/samba/smb.conf
[global]
guest ok = yes
guest account = afarber
security = share
hosts allow = 172.16.6. 127.0.0.1
[src]
2008 Oct 30
1
nfs mounted /home and selinux
I'm trying to set the context on an nfs mounted /home. I believe
exactly like in Redhat's Deployment Guide at
http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.2/html/Deployment_Guide/ch45s02s03.html
On my system running CentOS 5.2:
$ ls -alZ /home
drwxr-xr-x root root system_u:object_r:home_root_t .
drwxr-xr-x root root system_u:object_r:root_t ..
$ mount -t
2011 Jan 14
1
httpd and selinux
Hello,
Running httpd-2.2.3-43.el5.centos.3 on CentOS release 5.5 (Final), I
have :
$ ps -Ze
LABEL PID TTY TIME CMD
user_u:system_r:httpd_t 12833 ? 00:00:00 httpd
Is it normal for httpd to have this context (user_u:system_r:httpd_t) ?
I was expecting system_u:system_r:httpd_t.
And if it is not normal, is it because I have restarted httpd by
2012 Feb 17
1
Plotting issue
I have two different datasets
1) is in monthly format (obs)
2) yearly format (model)
in obs I have 84 files ( 2003:2009)for different months & in model I have 4
different files which has yearly data (2005:2008)
So for calculating my requirement I need these both data sets.
The sample calculations are as follows
file_o<-list.files(path=' ', pattern="0.2.text") #
2008 Aug 06
2
Dovecot PAM sessions with Maildir
I am configuring a new mail server on RHEL 5 x64. I have configured
dovecot as follows:
...
protocols = imaps
...
ssl_cert_file = /etc/pki/dovecot/certs/mailserver.cer
ssl_key_file = /etc/pki/dovecot/private/mailserver.pem
...
login_process_size = 64
...
mail_location = maildir:~/Maildir
...
passdb pam {
args = "session=yes cache_key=%u%s dovecot"
}
...
I'm getting the following
2008 Oct 04
2
ejabberd 2.0.2 vs SELinux vs CentOS 5
Lordy, I've been having problems with this darn thing, so I hope someone
can help me. :s
My troubles started when I downloaded the latest erlang and ejabberd
packages. I crashed and burned very quickly, trying two or three
different versions of erlang along with several of ejabberd 2.0.x.
Finally, after a week of pain, I admitted defeat, wiped the whole lot
and installed the binary on the
2006 Sep 02
1
imap fails, policy wrong?
up until a week or so ago, I had no problem using IMAP logging into a server
running Fedora Core (I think 4 or 5 ) with dovecot 1.0. Had used squirrelmail
and other mail agents using IMAP with no problem. as of 2 days ago, I
get a squirrelmail error "ERROR: Connection dropped by IMAP server.
Query: CAPABILITY" and turning on dovecot debugging shows the following:
2015 Jun 02
3
Try II: selinux, xfs, and CentOS 6 and 5 issue
Tried just the selinux list yesterday, no answers, so I'm trying again.
I partitioned GPT, and formatted, as xfs, a large (3TB) drive on a CentOS
6 system, which has selinux in permissive mode. I then moved the drive to
a CentOS 5 system. When we run a copy (it mirror-copies from another
system), we get a ton of errors. I discovered that the CentOS 5 system was
enforcing. I changed it to