similar to: weird SELinux denial

On 6/6/17, 12:38 PM, "Daniel Walsh" <dwalsh at redhat.com> wrote: >I am asking if you run it again, does it change. If the boolean is set >the audit2why should say that the AVC is allowed. Well, if I just run audit2why again, it always tells me the same thing. However, I have now discovered that if I unset allow_ypbind, and then reset it to 1, audit2why then says

It says what it is my original post; that?s the output from audit2allow ?w (which is audit2why): Was caused by: The boolean allow_ypbind was set incorrectly. Description: Allow system to run with NIS Allow access by executing: # setsebool -P allow_ypbind 1 --- Mike VanHorn Senior Computer Systems Administrator College of Engineering and Computer Science Wright State University 265 Russ

On 06/06/2017 09:17 AM, Vanhorn, Mike wrote: > I keep seeing this in my audit.logs: > > type=AVC msg=audit(1496336600.230:6): avc: denied { name_connect } for pid=2411 comm="dbus-daemon" dest=111 scontext=system_u:system_r:system_dbusd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:portmap_port_t:s0 tclass=tcp_socket > > Was caused by: > The boolean allow_ypbind was

On 06/06/2017 01:19 PM, Vanhorn, Mike wrote: > On 6/6/17, 12:38 PM, "Daniel Walsh" <dwalsh at redhat.com> wrote: > >> I am asking if you run it again, does it change. If the boolean is set >> the audit2why should say that the AVC is allowed. > Well, if I just run audit2why again, it always tells me the same thing. However, I have now discovered that if I unset

On 06/06/2017 09:41 AM, Vanhorn, Mike wrote: > It says what it is my original post; that?s the output from audit2allow ?w (which is audit2why): > > Was caused by: > The boolean allow_ypbind was set incorrectly. > Description: > Allow system to run with NIS > > Allow access by executing: > # setsebool -P allow_ypbind 1 > > --- > Mike VanHorn > Senior

Hi all, I'm load balancing 4 mysql databases using HAProxy. The setup seems to be working pretty well. Except I keep seeing these messages turning up in syslog: Mar 12 22:11:31 db1 kernel: [6058125.959624] type=1400 audit(1457820691.824:3029129): avc: denied { name_connect } for pid=801 comm="haproxy" dest=7778 scontext=system_u:system_r:haproxy_t:s0

On 02/25/2020 02:55 PM, Vanhorn, Mike wrote: > I just read an article (part of which is here http://www.linuxpromagazine.com/Issues/2020/230/The-sys-admin-s-daily-grind-urlwatch/(language)/eng-US ) about urlwatch. > > --- > Mike VanHorn > Senior Computer Systems Administrator > College of Engineering and Computer Science > Wright State University > 265 Russ Engineering

I would like to have my lab workstations logout a session after the person has been idle for a certain period of time. After some searching on the web, I got into /etc/gconf/schemas/gnome-session.schemas and set the default value of max_idle_action to ?forced-logout?: <schema> <key>/schemas/desktop/gnome/session/max_idle_action</key>

I have two HP dc7800 convertible minitowers that are exhibiting the following issue: every 5-10 minutes, they will "freeze" for about 30 seconds, and then pick right back up again. During the freeze, it seems that nothing at all happens on the system; the clock doesn't even advance (it just picks up again with the next second, and that 30-or-so seconds are lost). I've tried both

for more information : https://www.mankier.com/8/haproxy_selinux On Sun, Mar 13, 2016 at 2:05 AM, Alexander Dalloz <ad+lists at uni-x.org> wrote: > Am 12.03.2016 um 23:18 schrieb Tim Dunphy: > >> Hi all, >> >> I'm load balancing 4 mysql databases using HAProxy. The setup seems to be >> working pretty well. Except I keep seeing these messages turning up in

I have Windows 7 on /dev/sda and CentOS 6.4 on /dev/sdb. Here are the layouts: (parted) select /dev/sda Using /dev/sda (parted) print Model: ATA WDC WD10EZEX-00Z (scsi) Disk /dev/sda: 1000GB Sector size (logical/physical): 512B/4096B Partition Table: msdos Number Start End Size Type File system Flags 1 1049kB 374MB 373MB primary ntfs boot

Vanhorn, Mike wrote: > On 5/17/17, 12:03 PM, "CentOS on behalf of ken" <centos-bounces at centos.org > on behalf of gebser at mousecar.com> wrote: > >>An entire filesystem (~180g) needs to be copied from one local linux >>machine to another. Since both systems are on the same local subnet, >>there's no need for encryption. >> >>I've

Hi: I have been using Dovecot for well over a year now and it has always worked with few problems. The mail setup is not simple... Postfix+MailScanner+ClamAV+Docvecot+MySql+postfix.admin... just to mention the major things. The system is CentOS 5.3 on VMware. The maildir is on an NFS share, index and control is local. About a month ago I thought I upgraded from 1.1.x to 1.2.x. by doing an

Looking for the above. I have found sites where you can register the sites you are interested in - as well as yourself - but I would rather run something myself on my server to monitor websites etc which do not have RSS-feeds. Does anyone use something like this?

> Date: Wednesday, April 27, 2016 13:43:00 +0000 > From: "Vanhorn, Mike" <michael.vanhorn at wright.edu> > > On 4/27/16, 9:39 AM, "centos-bounces at centos.org on behalf of > m.roth at 5-cent.us" <centos-bounces at centos.org on behalf of > m.roth at 5-cent.us> wrote: > >> And now, I just >> ssh'd in from another windows, same

Using CentOS 5.5 x86_64. I am trying to install software that comes on two discs. I can start the install just fine, but when it comes to taking out the first disc and putting in the second, the system won't let me eject it. I remember reading something on the internet once about something needing to be enabled to allow this to work, but I can't find it now. Does anybody have a clue as

Installing CentOS 6 on a lab full of workstations, and I want to disable fast user switching. With CentOS 5, I simply made sure that the "user_switch_enabled" entry in /etc/gconf/schemas/gnome-screensaver.schemas was set to false. However, that doesn't work with CentOS 6. I've found various proposed solutions to this issue, such as gconftool-2 --direct --config-source

I'm confused as to how to install updates for CentOS 5.6 without upgrading to 6.0. When I do a "yum check-updates", the new *-release packages for 6.0 are listed, so I don't think I want to do a simply "yum update". Is there a way to update 5.6 without going to 6.0? --- Mike VanHorn Senior Computer Systems Administrator College of Engineering and Computer Science

I am using CentOS 5.7. I have an /etc/security/access.conf file which has the following: + : root : LOCAL + : @mynetgroup : ALL - : ALL : ALL I thought this is supposed to restrict access to the system to only root and the accounts in the mynetgroup netgroup; however, anyone NIS account is still able to login. It appears that the access.conf is being ignored completely, so I'm thinking

Using CentOS 5.8: Currently on my workstations, when I press the power button the computer immediately does a 'shutdown -h now' (per /etc/acpid/events/power.conf). Is there a way to change it so that a confirmation dialog comes up, rather than an immediate shutdown? I assume that I am going to need to change that power.conf file to tell some program that the power button's been