Fedora Servers :: SELinux - Find A List Of All The Booleans For SELinux (10) Using Getsebool -a

Feb 23, 2009

You can find a list of all the booleans for SELinux (Fedora 10) using getsebool -a My question is, is there a reference online that describes each one. Most of obvious but it's one of those "I have to know because it's there situation).

View 5 Replies


Server :: Where Are The Booleans For SELinux Stored

Sep 23, 2010

I always thought that whenever /usr/sbin/setsebool was used, it would write either a "0" or a "1" into the corresponding boolean file. All SELinux boolean files are in /selinux/booleans but If I check, for example, this boolean ...


View 2 Replies View Related

CentOS 5 Server :: Where Are The Booleans For SELinux Stored

Sep 24, 2010

I always thought that whenever /usr/sbin/setsebool was used, it would write either a "0" or a "1" into the corresponding boolean file. All SELinux boolean files are in /selinux/booleans but If I check, for example, this boolean ...

$ sudo /usr/sbin/getsebool ftp_home_dir
ftp_home_dir --> on

It returns a positive, but if I do

$ sudo less /selinux/booleans/ftp_home_dir

I get ... read error (Press Return)

Furthermore, if I list the boolean file itself, it shows it to be empty

$ sudo ls -l /selinux/booleans/ftp_home_dir
-rw-r--r-- 1 root root 0 Aug 9 11:09 /selinux/booleans/ftp_home_dir

Where is SELinux storing the booleans then?

This is on CentOS 5.4

View 3 Replies View Related

General :: SElinux Security Context Type & Booleans In FTP/vsftpd?

Sep 13, 2010

What are the SElinux security context type & booleans in FTP/vsftpd

View 3 Replies View Related

Fedora Security :: SELinux Troubleshooter Flags New Alert, ... But List Is Empty?

Feb 6, 2010

Everytime I login the SELinux Troubleshooter panel applet alerts me that I have 1 alert to view, however when I click on the icon and bring up the Troubleshooter there are no alerts

View 2 Replies View Related

Fedora Servers :: SELinux Troubleshooter Reports Nothing

Sep 19, 2010

I recently had three problems with SELinux: httpd_unify - SELinux prevented my web server from having write access. ftp_home_dir - SELinux prevented my virtual users from connecting to their home directory. textrel_shlib_t - SELinux prevented two separate Unreal Tournament 2.5 mods from running. The troubleshooter did not notify me of any of these problems. I finally figured out how to fix them on my own and did. CentOS had a very concise, albeit excessive SELinux troubleshooter that involved notifying you of every single problem on your server multiple times. Still, I would rather be spammed with notifications than receive none at all.

If I had not switched from a CentOS box, I would not know the chcon command to set textrel_shlib_t to my mods, as I cannot do it in the SELinux Administration without making it global. How do I fix the troubleshooter to report?

View 4 Replies View Related

Fedora Servers :: Rsync And SELinux: Software Not Working?

Feb 19, 2009

I am using FC 10. I did an rsync to get a software Matlab from the local lan. But Matlab does not work. The error is:


License checkout failed.
License Manager Error -96
MATLAB is unable to connect to the license server.


I have set SELinux as Permissive for the current enforcing mode, while the default enforcing mode is Enforced. I did rsync in this way:


rsync mecsmrao@ /usr/local/pkgs/matlab_7.6_r2008a/ -avtpog -e ssh

What am i supposed to do?

View 3 Replies View Related

Fedora Servers :: Open The SELinux Management Applet?

Mar 21, 2009

I am in a class called Linux System Administration and we are setting up Fedora 8 as a server. Per the class instructions, I have changed the default runlevel to 3 so the system always boots to a command line. The instructions say log in with your regular user account [I KNOW HOW TO DO THIS] and use the startx command to load GNOME. [I HAVE NO IDEA HOW TO DO THIS]

I searched the Internet and the text book, but found nothing I could understand.

View 6 Replies View Related

Fedora Servers :: Samba Share When Selinux Is In Permissive Mode?

May 13, 2009

I don't think it has anything to do with the config file. More to do with SElinux. I need to know how to configure SElinux so I can see my samba share when SELinux is on. When I setenforce 0 I can seen all the files and folders set it to setenforce 1 cannot see anything.

Here is the output when I ran [root@fileserver /]# getsebool -a | grep smb
allow_smbd_anon_write --> on
smbd_disable_trans --> on

These two options were off I tried turning them on.

This is another one of the commands I tried running. I did change a few options but I am not sure which I do need to change. I am running a stand alone server so I don't need the DC option.

[root@fileserver /]# getsebool -a | grep samba
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> on
samba_export_all_rw --> off
samba_share_nfs --> off
use_samba_home_dirs --> on

I can also post a copy of my smb.conf file too.

View 1 Replies View Related

Fedora Servers :: Way To Continue To Use SELinux / Forward Root's E-mail To Outside Account?

Dec 23, 2009

I have installed Fedora Core 11 with SELinux enforcing.It appears (via log files) that if I use a .forward file in the home directory for root that SELinux prevents the use of this mechanism for forwarding e-mail.Is there a way to continue to use SELinux and be able to forward root's e-mail to an outside account?

View 3 Replies View Related

Fedora Servers :: SELinux Is Preventing /usr/sbin/vsftpd "net_raw" Access

Dec 31, 2009

I receive the message "SELinux is preventing /usr/sbin/vsftpd "net_raw" access" many times. Found this bug at redhat but really do not understand what i should do about it ((( Kindly let me know how to change this to normal. Shut down Selinux is not the way out.

View 14 Replies View Related

Fedora Servers :: Dreaded Vsftp "500: Cannot Change Directory" Error Not SELinux Related?

Sep 12, 2009

When I try to login as a user, I get the dreaded "500 OOPS: cannot change directory:". Almost every posting I can find related to this problem was due to SELinux being enabled. My SELinux is operating in permissive mode. So why can't it open the home directory when I log in as the tarheelnk user?

[root@server1 home]# ls /home/ -l
total 36
-rw------- 1 root apache 7168 2009-09-11 16:24 aquota.group
-rw------- 1 root apache 7168 2009-09-11 16:30 aquota.user
drwx------ 2 root root 16384 2009-09-11 10:07 lost+found
drwsrws--- 4 tarheelnk apache 4096 2009-09-11 14:58 tarheelnk

View 1 Replies View Related

Fedora :: SELinux Will Not Allow Tor?

Jan 17, 2011

I'm running into some problems setting up Tor on Fedora 14. I have followed the following guide to a T (although I realize it is for Fedora 10):orum.org/showthread.php?t=211516.I believe the problem is SELinux... but I'm not sure. Has anyone had any success running Tor in Fedora 14 without it bugging out? If not, is there some sort of Unix alternative?

View 12 Replies View Related

Fedora :: NTP Is Blocked By SElinux?

Jul 18, 2009

How can I solve the problem?

View 1 Replies View Related

Fedora :: SELinux Does Not Like Wine

Jan 18, 2010

There are several options available, such as "Ignore Alert" and "Turn off memory protection". What are the consequences of choosing one or the other?I'm new to Fedora and I'm not familiar with SELinux. Can someone please give me guidelines (or explanation) on how to deal with SELinux alerts?

View 7 Replies View Related

Fedora :: How To Permanently Disable Selinux

Jul 14, 2009

I came across the following method of how to permanently disabling selinux and it's notifications. Although changing enforcement from the gui into permissive mode does most of the job, the notifications still pop-up when some applications are started.

So to disable it do the following:

open terminal as root and execute:


And then change the SELINUX line to SELINUX=disabled


This is it. Now reboot the system and selinux will never bother you again.

If you are not a Fedora user and you are using this forum just because we are cooler here then you will not find the /etc/selinux/config as in the fedora releases. What you need to do is to edit the kernel boot line and add selinux=0 at the end:


Reboot the system

View 14 Replies View Related

Fedora :: Selinux On Encrypted Root?

Oct 2, 2009

After my cloning problems this morning were resolved, I have been able to complete conversion of the clone to run from an encrypted root partition. However, I have been unable to enable selinux when running from the encrypted root. /etc/selinux/config contains the settings that work on my unencrypted system


and it is not disabled from the grub bootline, but the encrypted system always comes up with selinux disabled. Attempting to enable it with the command setenforce 1 fails, and to add insult to injury, the selinux administration-gui shows that it is enabled and enforcing. The cloned, now encrypted, system was cloned via rsync -aHXv, so the selinux contexts/attributes have been maintained as near as I can tell. I did have to disable selinux while performing the rsync of the /selinux directory in order to get it to copy and I am wondering if there was still some issue with this method.

I know some of you are running from encrypted root fs's and was wondering: Do you have selinux enabled and is it functioning properly? Any suggestions as to how I might jumpstart it or force it to run? Maybe I should boot into the system and uninstalling/reinstalling selinux?

View 3 Replies View Related

Fedora :: OOo Will Not Run With SELinux - Edit Menu

Nov 18, 2009

I just upgraded to fedora 12 via clean install with old /home partition and deleting old config files, and here is my issue. I need to edit the menu, and I need to set SELinux to permissive. OOo will not run with SELinux enabled for some reason, and besides, all my systems use SELinux in permissive. These two options no longer exist in the menu

View 7 Replies View Related

Fedora :: SElinux In Permissive Mode

Dec 4, 2009

I made the Selinux inactive with easylife how can I reactivate it.

View 6 Replies View Related

Fedora Security :: SELinux Context For Cgi-bin?

Oct 20, 2010

I'm attempting to get MapServer running on my Fedora 13 computer. I was able to install with the package manager, and the executable (mapserv) was originally placed in /usr/sbin. But I need it in /var/www/cgi-bin to work on the webserver. So I copied the file to the right location. Unfortunately, it doesn't have the correct SELinux context. Here's the message from the troubleshooter:

SELinux denied access requested by /var/www/cgi-bin/mapserv. /var/www/cgi-bin/mapserv is mislabeled. /var/www/cgi-bin/mapserv default type is httpd_sys_script_exec_t, but its current type is httpd_sys_script_exec_t. Changing this file back to the default type, may fix your problem.

How's that for circular logic? Does anyone have an idea what the correct SELinux context for a cgi-bin executable might be?

View 3 Replies View Related

Fedora Security :: Selinux Not Enabled?

Nov 10, 2010

Trying to keep selinux enabled. When I start SeLinux Troubleshooter from the menu, which is inautostart as well, It tells me SELinux not enabled, sealert will not run on nonSELinus systems".How do I get SELinux permanently started then

View 10 Replies View Related

Fedora :: Get SELinux And Wine Error

Jan 2, 2011

I get the SELinux and wine error. How can this be fixed?

View 1 Replies View Related

Fedora :: SELinux Not Allow Mplayer To Play Flv?

Jan 9, 2011

I have trouble with my Fedora 14 on laptop, that I never had on previous Fedora versions (10-13).The SELinux not allow mplayer to play flv files and I cannot convert any files from flv to mp3.I have all codecs installed.Also Totem not works propely.I can shutdown SELinux (but dont want to) but there still remain (already installed) codec, which cant be found (decoder h.264).So its not matter if I shutdown SELinux because I still cant play flv
Ok so there are my error message (sorry for my english!):

ffmpeg: error while loading shared libraries: libxvidcore.so.4: cannot enable executable


View 5 Replies View Related

Fedora Security :: How To Enable The SELinux

Jan 17, 2011

My newly installed Fedora-14 (64-bit) has SELinux disabled. I can't find any way to enable it. I tried to set it manually in /etc/selinux/config to enforcing or permissive but nothing happens after reboot. In GUI configuration tool it is set to disabled and grayed out so that there is no way to enable it there. Is there another way to enable SELinux?

View 11 Replies View Related

Fedora Security :: SELinux Not Enforcing?

Apr 30, 2011

I tried to log in to my xguest account and it asked for a password, which it shouldn't, so there's a problem with SELinux.When I type getenforce it says it is disabled, yet when I go to /etc/selinux and look at the config, it is in enforcing mode and not commented out, type is strict.When I go to the SELinux management GUI I can't change the current enforcing mode and it's set to disabled and default to enforcing.

View 2 Replies View Related

Fedora :: F15 No Selinux Admin App / Get It To Work?

Jul 23, 2011

I have a Selinux Troubleshooting app but no Admin. How do I admin it?

View 1 Replies View Related

Red Hat / Fedora :: SElinux Error And Lock Out

Sep 24, 2010

I have accidentally locked myself out in the following manner. I have Fedora 13 with SElinux. The whole hard drive was encrypted at install with Fedora's standard method. Upon logging into a non-root account called "hoss", I set the policy (in gnome) System menu -> Administration -> SElinux administration -> User Mapping -> added the logged on user as a SElinux user with only user_u privileges. After reboot, I successfully log in as hoss, but now I get an error when trying to open the SElinux administration, any open office program, or any task requiring elevation with root password (the prompt never comes up). What is worse is I did not set the ability to login the console as root. This user now does not have write privileges to any of root's documents. I cannot access the hard drive from a remote source because it is encrypted. Is there any way whatsoever to now elevate myself to root to reconfigure SElinux? When I open the SElinux administration Should there not be a prompt that gives me a root password to be able to correct SElinux by removing "hoss" from the list? As of right now this account seems to be totally unable to be elevated to higher privileges. I cannot even use the Add/Remove software feature to apply patches to SElinux without a root password. Elevating to su in bash is also blocked.

View 3 Replies View Related

Red Hat / Fedora :: Disable Clamav In SElinux?

Jul 5, 2011

I get constantly this error, how can disable clamav in SElinux, or there is maybe a rule for it?

SELinux is preventing the clamscan from using potentially mislabeled files (./clamav-366ce73c2b6ad30d9e062d

SELinux is preventing the clamscan from using potentially mislabeled files (/tmp/clamav.577/clamav-9c353ad9c85b

View 1 Replies View Related

Fedora Installation :: Get Around Or Work With SELinux Any Pointers?

Mar 22, 2009

I am trying to install MyEclipse on FC10. But, I am getting an SELinux alert saying that myeclipse is attempting to move/change a file - Thus I can't seem to get it installed.

I have NO idea how to get around or work with SELinux any pointers.

View 2 Replies View Related

Fedora Security :: Prevent Firefox With SELinux?

May 11, 2009

I am new to Fedora 10, and to SELinux too.

I would like to know how can I prevent from users with role user_r to connect to Internet with firefox.

View 2 Replies View Related

Copyrights 2005-15 www.BigResource.com, All rights reserved