Fedora :: SELinux - Partition Accessed By Httpd & Mysqld - Can't Connect To The Databases
Oct 5, 2010
all of the website content will be on a separate partition called "/websites". I've got SELinux enabled, and set the context on /websites and subdirectories to "public_content_t", so that httpd (Apache) can access this partition. This works. However we also have mysql databases stored on this partition as well, and we are getting errors like this in /var/log/auditd/audit.log: type=AVC msg=audit(1286249333.390:326): avc: denied { search } for pid=6167 comm="mysqld" name="/" dev=sda3 ino=2 scontext=system_u:system_r:mysqld_t:s0 tcontext=system_u:object_rublic_content_t:s0 tclass=dir
I've tried setting the context to "mysqld_db_t" on the MySQL database folders, but it appears that it cannot get to the partition at all, or anything outside of /var/lib/mysql/. How can we get mysqld to access databases on this partition? Right now there are symlinks from folders in /var/lib/mysql/ that go to each database on /websites partition. Setting SELinux to Permissive mode gets everything to work fine. Basically with SELinux in Enforcing mode, we're getting errors in the PHP applications that httpd can't connect to the databases.
View 4 Replies
ADVERTISEMENT
Feb 15, 2011
Starting mysqld daemon with databases from /var/lib/mysqli m installed mysql-5.0.77-4.el5_5.4
[root@serv ~]# mysql -u root
ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: NO)
[root@serv ~]# /etc/init.d/mysqld stop
[code]....
View 6 Replies
View Related
Apr 18, 2011
installing mysql server manually. i have successfully installed mysql server but when i am try to create database, it shows error like this
ERROR 2002 (HY000): Can't connect to local MySql server through socket '/var/run/mysqld/mysqld.sock' (2)
** mysqld is not available in /var/run and error log file is also not available in /var/log **
View 5 Replies
View Related
Apr 10, 2010
After the upgrade from 8.10 to 9.04, all was well. But after the upgrade from 9.04 to 9.10, I lost the MySQL server. Now, I recall during the upgrade, I was asked if I wanted to keep the existing my.cnf file or replace it with a newer one. I did as suggested and kept the original as I had edited it before. The same question was asked with a couple other config files. I kept the original in each case. After the first step, I checked the server was running and the websites were up, all was well. After the update to 9.10, when I checked the server, I get the following error:
Code: error: 'Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)' Check that mysqld is running and that the socket: '/var/run/mysqld/mysqld.sock' exists! Can anyone point me in the right direction to getting this resolved?
View 2 Replies
View Related
Feb 24, 2011
I need some help.Trying to set up bugzilla on my VM.After setting up the IP to use static i could log on to the url its not even loading up from command line its issueing an error.when i try to log on to mysql
bugzilla:~# mysql -u root mysql] ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)
View 1 Replies
View Related
Feb 27, 2011
I'm the lead Dev of GnackTrack and we're having issues with running MySQL on the LiveDVD.Once installed everything works fine, mysql can be connected to but when using the liveDVD we get the following error:
Code:
root@root:~# mysql
ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)
Contents of /etc/mysql/my.cf point to /var/run/mysqld/mysqld.sock but because this is a liveDVD the actual file is located in:
/rofs/var/run/mysqld/mysqld.sock
[code].....
View 4 Replies
View Related
Sep 8, 2010
I have 4 servers:
- One is loadbalancer, installed keepalived and ipvsadm - LV1
- One is failover for loadbalancer, installed keepalived and ipvsadm too - LV2
- The other servers was installed httpd and mysqld. (RealServer)
LV1 load balancing for both httpd and mysql. And it's working fine.
VIP for http: 192.168.1.110
VIP for mysql: 192.168.1.111
Now I want to setup a website on RealServers , with URL is [url], and this website connect to mysql via VIP 192.168.1.111, this means real servers will connect to their mysql via load balancer (LV!). I tried to connect mysql via VIP from real server but it cannot.
View 7 Replies
View Related
Aug 30, 2010
the following security alert made me checking my httpd.conf:
Code:
Summary:
SELinux is preventing the http daemon from reading users' home directories. Detailed Description: SELinux has denied the http daemon access to users' home directories. Someone is attempting to access your home directories via your http daemon. If you have not setup httpd to share home directories, this probably signals an intrusion attempt. Even though in httpd.conf there is a line that reads
Code:
LoadModule userdir_module modules/mod_userdir.so
in the same conf-file the access to home-dirs is disabled:
Code:
<IfModule mod_userdir.c>
[Code]....
View 12 Replies
View Related
Apr 18, 2011
i have successfully installed mysql server but when i am try to create database, it shows error like this
ERROR 2002 (HY000): Can't connect to local MySql server through socket '/var/run/mysqld/mysqld.sock' (2)
** mysqld is not available in /var/run and error log file is also not available in /var/log **
View 4 Replies
View Related
Jul 12, 2010
I am setting up a web server and SElinux keeps stopping httpd/appache and making it fail. Everything works fine when SElinux is set to permisive, so I know it is SElinux causing the problem. I have all the apache/httpd items allowed in the SElinux bool and even added the line the troubleshooter told me to add but the problem still persists. Here is what SElinux puts out:
[Code].....
several times and it does nothing. I have all the permissions set to Apache as owner and group and allow execution on all the files.
View 1 Replies
View Related
Jan 20, 2010
I've got several servers running RedHat4 ES, alongside several Windows 2003 servers with MS SQL on them.
Is there a MS SQL Client for Linux so I can connect to the SQL Server databases?
I'ev got Oracle running as well, and I can back these up from my linux boxes easily as there is a Linux ORacle client. I'd like to do the same with MS SQL, so I have one central location doing my database backups .
View 4 Replies
View Related
Dec 27, 2010
Can anyone tell me what command can be used so that the Linux Centos Server starts mysqld, httpd and ftpd services at boot time automatically?
View 2 Replies
View Related
Nov 19, 2010
I have a 500 G, where 80 are used for FC13. I added a new 80 G partiton, using Disk Utiliy, called it Backup, and I can access it when I am logged as root, When I log with any other user, even with all privileges (added almost in all groups), I get a dialog box requesting authentication.
I enter my user password, file manage just disappears as soon as dialog box disappears and I think it is a permission issue again.
In disk utility opposite to Device there is "dev/sdb", in mount point there is media/backup.
I opened fstab, I can not see an entry, here is the fstab :
Quote:
#
# /etc/fstab
# Created by anaconda on Wed Jun 16 00:58:19 2010
#
# Accessible filesystems, by reference, are maintained under '/dev/disk'
[Code]....
So what is the route to follow to follow to allow my user to access normally read and write to it without anu persmission issues
View 9 Replies
View Related
Sep 21, 2010
I transfered some mysql databases from an 8.04 partition to a 10.04 partition. They wouldn't open because the ownership & group was root:root since I transfered them as root. I looked at the original ownership of the files on 8.04 & found they were all "sane:124 ". I changed everything to mysql:mysql on the 10.04 partition & everything works O.K. now but I have no idea where that owner & group came from.
Two things I don't understand:
1 -Why I had to change ownership from root:root when I was logged in as root in mysql & the databases didn't show up?
2 - Where did the original "sane:124" ownership come from?
View 1 Replies
View Related
Jun 17, 2011
What if two programs say ftpd and httpd need to acces the same directory? Any way to set context type of that directory to httpd_t and ftpd_t? What do you do in a case like this?
View 2 Replies
View Related
Mar 23, 2010
I have installed mysql ,php ,apache,phpmyadmin i have create a forum on mysite check it on[URL]..Now i have create a database with name login and then i create a table with name loginn ..After that in loginn table i create colums with name username (data type=varchar),and password(data type=int);i want when someone entered username and password in my sql ,it goes to database and userconnect to next page as we generally do in orkut or other social sites;I dont know how to connect with php with mysql and how to do it whole
View 3 Replies
View Related
Feb 23, 2009
You can find a list of all the booleans for SELinux (Fedora 10) using getsebool -a My question is, is there a reference online that describes each one. Most of obvious but it's one of those "I have to know because it's there situation).
View 5 Replies
View Related
Sep 19, 2010
I have installed fedora 13 in my system. httpd server is also installed. when I tried to start the service of httpd, following error message displayed: Starting httpd: (98)Address already in use: make_sock: could not bind to address [::]:80
View 1 Replies
View Related
Jul 13, 2010
I am learning SELinux from LinuxCBT and I'm stuck at one place. Now video is on RHEL 4 (so tell me if things has changed since, cause I can't find anything related) shows how to disable SELinux security on httpd.first I don't know diff between initrc_t and uncofined_t; and second I don't know if something is wrong is everything is all right.
View 1 Replies
View Related
Dec 17, 2010
I'v just installed wicd. I can't get it to sart, I get errors saying that wicd couldn't connect to it's dbus interface and the wicd deamon has shut down. Then there's a report from SELinux saying that it's preventing /usr/bin/python "write" access on /etc/dhcp/manager-settings.conf and that access is denied to wicd. I can get wicd to start if I su to root, but I'd like to not have to do that every time I boot. Is there a fix?
View 1 Replies
View Related
May 5, 2011
I'm in the process of setting up a new Debian box as a web server. I had apache2 and mysql set up and all of the SSl taken care of. After installing selinux I noticed that my browser and ftp in the terminal wont connect to localhost, other computers on my network can connect to the apache server via a global ip, but it wasn't pulling database info. When I checked, I found that mysql was stopped. When I try to start it, it times out.
After some googling and trying a bunch of setsebools I finally just disabled selinux in /etc/selinux/config. I rebooted and confirmed selinux was disabled, but still the same issues. If it helps the error php throws when trying to connect to mysql is "can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)"
View 2 Replies
View Related
Oct 18, 2010
I have installed CentOS and Redhat5 on a LVM partition and selinux is enabled. Both OS's share the same /home partition with one user with the same login(gc) and same uid (1000). The problem I am having is that gc can login with all permissions etc on the OS that was installed first (CentOS). For the redhat OS gc can login but cannot write to the home directory (or startx since X needs to write to Xauthority)Here are outputs - 1st CentOS
[gc@shuttle ~]$ ll -Zd $HOME
drwx------ gc gc system_ubject_r:unlabeled_t /home/gc
[gc@shuttle ~]$ stat $HOME
[code]....
View 1 Replies
View Related
Feb 1, 2009
I've created a mysql user and he can connect Joomla to mysqld when everyone has full permissions to the mysql homedir but I know this is bad from a security standpoint. If I set mysql user as the only one with permissions then I can't connect. I know Joomla support is not very help from past experience, wish I could dump it for something else but it does work great once it is configured so I need to keep it around, can anyone make a guess as to what permissions I need to have set on mysql's home dir so that joomla can still connect yet I am more secure than now?
View 11 Replies
View Related
Dec 24, 2010
I'm new to Apache configuration so could be misunderstanding but shouldn't the characters highlighted in red below be removed?
Code:
View 9 Replies
View Related
Jun 16, 2011
I am facing a problem in browsing website with F15 installation, both firefox and chrome browsers give me a headache. The main website that cannot be accessed is facebook.com, I only can browse it in certain of time after clearing cache, cookies and histories, this only happen for facebook web only.
View 11 Replies
View Related
Nov 9, 2009
accidentally I do something wrong with my server and the httpd folder missing and I need it to setup my mail server and anyone can help me what can I do without reinstalling my Cent OS? Here is the error msg :
[root@mydomain etc]# service httpd stop
Stopping httpd: [FAILED]
[root@mydomain etc]# service httpd restart
[code]....
View 3 Replies
View Related
Jul 30, 2010
We are using this url on our testing box and this ip is reverse proxy IP ( 10.192.64.52)
Without reverse proxy:- URL is working fine.
http://10.192.16.77/akc-qa/arsys/ser...TS000000001430
But with reverse proxy its putting escape [%25] in between %3a
[url]
Is it possible to write a rewrite rule to bypass escape [NE] for this particular URL?
View 1 Replies
View Related
Jun 10, 2011
Running CentOS 5 x64 And today my httpd is running very slow and I can't find a fix. Looked all over different forums
When starting httpd I get the message: /var/lock/subsys/httpd': No space left on device I checked that directory above and there is no file called httpd tried rebooting server
Can't do updates too:
[root@u15438957 ~]# yum update
Loaded plugins: fastestmirror, priorities
rpmdb: unable to join the environment
[Code]...
View 4 Replies
View Related
Mar 8, 2010
I'm using opensuse 11.1. I wanted to know if there was a setting somewhere to allow httpd to connect to the network?
View 9 Replies
View Related
Jan 17, 2011
I'm running into some problems setting up Tor on Fedora 14. I have followed the following guide to a T (although I realize it is for Fedora 10):orum.org/showthread.php?t=211516.I believe the problem is SELinux... but I'm not sure. Has anyone had any success running Tor in Fedora 14 without it bugging out? If not, is there some sort of Unix alternative?
View 12 Replies
View Related
