Fedora Servers :: Open The SELinux Management Applet?
Mar 21, 2009
I am in a class called Linux System Administration and we are setting up Fedora 8 as a server. Per the class instructions, I have changed the default runlevel to 3 so the system always boots to a command line. The instructions say log in with your regular user account [I KNOW HOW TO DO THIS] and use the startx command to load GNOME. [I HAVE NO IDEA HOW TO DO THIS]
I searched the Internet and the text book, but found nothing I could understand.
You can find a list of all the booleans for SELinux (Fedora 10) using getsebool -a My question is, is there a reference online that describes each one. Most of obvious but it's one of those "I have to know because it's there situation).
it doesn't do anything critically wrong.it shuts down, starts up, suspends, restarts, etc, rather well.only thing is that, altho' I set the settings to never hibernate and to never put the display to sleep, it does. I't's annoying, since I can't whatch a movie in peace, for instance.
I recently had three problems with SELinux: httpd_unify - SELinux prevented my web server from having write access. ftp_home_dir - SELinux prevented my virtual users from connecting to their home directory. textrel_shlib_t - SELinux prevented two separate Unreal Tournament 2.5 mods from running. The troubleshooter did not notify me of any of these problems. I finally figured out how to fix them on my own and did. CentOS had a very concise, albeit excessive SELinux troubleshooter that involved notifying you of every single problem on your server multiple times. Still, I would rather be spammed with notifications than receive none at all.
If I had not switched from a CentOS box, I would not know the chcon command to set textrel_shlib_t to my mods, as I cannot do it in the SELinux Administration without making it global. How do I fix the troubleshooter to report?
On my netbook, I'm experimenting with removing any panels or window navigators completely, and using synapse for launching applications. But I've encountered a quite annoying problem, as the only stable solution I've found for connecting to wireless applications is the applet used in the gnome panel. I've tried the Wicd Network Manager, but it keeps disconnecting without reason.
Is there another program for connecting wireless, or maybe a way to use applets without a panel/window navigator?
I don't think it has anything to do with the config file. More to do with SElinux. I need to know how to configure SElinux so I can see my samba share when SELinux is on. When I setenforce 0 I can seen all the files and folders set it to setenforce 1 cannot see anything.
Here is the output when I ran [root@fileserver /]# getsebool -a | grep smb allow_smbd_anon_write --> on smbd_disable_trans --> on
These two options were off I tried turning them on.
This is another one of the commands I tried running. I did change a few options but I am not sure which I do need to change. I am running a stand alone server so I don't need the DC option.
[root@fileserver /]# getsebool -a | grep samba samba_domain_controller --> off samba_enable_home_dirs --> off samba_export_all_ro --> on samba_export_all_rw --> off samba_share_nfs --> off use_samba_home_dirs --> on
I have installed Fedora Core 11 with SELinux enforcing.It appears (via log files) that if I use a .forward file in the home directory for root that SELinux prevents the use of this mechanism for forwarding e-mail.Is there a way to continue to use SELinux and be able to forward root's e-mail to an outside account?
I receive the message "SELinux is preventing /usr/sbin/vsftpd "net_raw" access" many times. Found this bug at redhat but really do not understand what i should do about it ((( Kindly let me know how to change this to normal. Shut down Selinux is not the way out.
When I try to login as a user, I get the dreaded "500 OOPS: cannot change directory:". Almost every posting I can find related to this problem was due to SELinux being enabled. My SELinux is operating in permissive mode. So why can't it open the home directory when I log in as the tarheelnk user?
I use network manager applet 0.7.1. I had set the automatic wireless connection to my my wireless network (WPA key secured). Recently, I get the following problem: At the automatic connection, I get the message: Network manager applet (/usr/bin/mn-applet) needs default keyering. As I don't know what it is to type it and then, deny or OK, it doesn't get connected to my wireless network.
I keep getting the following error message every time I try to open the Hipo iPod Management Tool:
Code:
Could not find org.freedesktop.Hal at Hal.Manager..ctor () [0x00000] in <filename unknown>:0 at IPod.HalClient.HalDeviceManager..ctor () [0x00000] in <filename unknown>:0 at IPod.DeviceManager.Create () [0x00000] in <filename unknown>:0 at IPod.DeviceCombo..ctor () [0x00000] in <filename unknown>:0 at Hipo.HipoMainWindow.CreateWindow (System.String[] args) [0x00000] in <filename unknown>:0 at Hipo.HipoMain.Run (System.String[] args) [0x00000] in <filename unknown>:0 at Hipo.HipoMain.Main (System.String[] args) [0x00000] in <filename unknown>:0
Is there any reason why taskjuggler is not included in openSUSE? I can see a version available in openSUSE Factory but it is not built with latest libs. I have several of my friends asking for Project Management software under openSUSE and I don't know what to advise them.
I get this error message when I open up virt-manager (logged in as a typical user):
Code: Unable to open a connection to the libvirt management daemon. Libvirt URI is: qemu:///system Verify that: The 'libvirtd' daemon has been started Manually trying to start the daemon results in: Code: error : qemudWritePidFile:508 : Failed to open pid file '/var/run/libvirtd.pid' : File exists virt-manager works just fine when I log in as root.
I'm using Ubuntu 10.04.I'm looking for a panel applet that will act much like the Application/Places menu but only includes my few favorite directories preferably with submenu ability and icon settings.
I'm having trouble with my java, I got it to isntall, restarted but when I go to any java based chat, or drawing site it doesn't load the applet, the applet shows up it just says "Start: Applet not initialized" Did I install it wrong?
when i tried to open my software management(repositories) in YaST i saw a pop up window it says PackageKit is still running(probably busy)Ask PackageKit to quite again.i can't quit that.i tried to quit it via system activity.Because of this i can't open software management(repositories).it is also not working.how to quit PackageKit?
I have 2 partitions, 1 for OS and 1 for data. The OS 1 is going to be imaged with every Ubuntu OS update so that this image can be taken from the testing server to the live server. However, the data must stay on the live server, so the imaging it will not erase the data. Therefore, I divided the live server into 2 partitions: OS and data.
I want to be able to save all of my customizations and data on the live server to the data partition. This includes (but is definitely not limited to) MySQL databases, Apache configurations, my /var/www/ folder, etc. How would I go about doing this? As in how do I set MySQL/Apache/etc. to save their configuration files on the data partition? Or is there a totally better way to achieve what I want?
Is there any Print Management service for centralized Print Manager and Print Monitor?
My requirement is a Print Management Server which monitor all the printers in my office and keep tracks of all the the printing operations (IP of the user, Digital copy of the printed documents, date, time...)
I installed CUPS but it's not the solution which I'm looking for.
I'm looking for something to manage multiple machines. Within a few weeks we're getting about 32 machines to manage. We need to manage via SSH, SFTP and mySQL. Is there something available which gives an overview of the machines and opens a terminal or sftp session with the selected machine, with a shortcut or something like that?
I've been struggling for days trying to open port 53 and 25 but can't get it to work. My iptables at /etc/sysconfig contains the following: # Firewall configuration written by system-config-firewall # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] .....
On the server machine when I do port scan with nmap I see the following result: Starting Nmap 4.76 [URL] at 2010-03-28 01:03 CET Warning: Hostname localhost resolves to 2 IPs. Using 127.0.0.1. Interesting ports on localhost (127.0.0.1): Not shown: 986 closed ports .....
But when I try to do telnet from an external machine, e.g: telnet <IP of host> 53 I get: Connection refused telnet: Unable to connect to remote host
I also did a port scan with a tool on an external machine but port 53 and 25 weren't listed as opened ports. Also CheckDNS.net on the server returns "Connection reset. Probably DNS server is offline". I am 100% sure that named and sendmail are running. When I do a ps -aux I see: named 9261 0.0 0.3 85528 14784 ? Ssl 00:46 0:00 /usr/sbin/named -u named root 2550 0.0 0.0 9536 1960 ? Ss Mar23 0:02 sendmail: accepting connections
I have it set right now to be open so that there's no need to type in username and password information. It works great. I can type \*IP Address* on my WinXP laptop while on the network, and it brings me to the Public folder that I'm trying to share. But, when I click on the folder to open it up, it just sits there and eventually will give a userid/password prompt or will give me an access denied error.
Is there any computer management software like Cafe123 for Windows? Some friends of mine tried to reduce the cost for setting up computers by making one of the counter/server using Linux, instead of using Windows. And another reason that he want to avoid the counter server from being infected by malware such as those malware spread using usb drive. EDIT: Oh, I forgot to mention that, the server intended to use will be powered with Ubuntu, and the client computers will using Windows XP instead.
I tried to see if my port was open but got a message saying Error: I could not see your service on 58.164.165.88 on port (80) Reason: Connection refused could someone us out here
I've got a situation where I would normally use NFS, but cannot. So in it's place I need to use a samba share (even though it's linux -> linux). I need it completely open and world writeable as if I had done an rw in an NFS export. I thought I had it as when logged in as a user I can edit delete etc. however the apache user seems to be struggling with creating files.
Here's my smb.conf as it stands. Code: [global] workgroup = WGRP server string = Samba Server Version %v security = user passdb backend = tdbsam unix extensions = no
[sites] comment = Sites Directory path = /var/www/sites public = yes guest ok = no write list = siteusr writeable = yes create mask = 0777 browseable = no security mask = 0777 directory security mask = 0777 note that the drive is mapped as user siteusr
I maintain a samba PDC for a small business, our current setup does not work very well; on a hardware upgrade I directled imported the old ldap database and attempting to add machines to the domain causes all sorts of trouble.
I'm 95% sure the original database (which predates my employment) was created using the idealx smb-ldap tools, unfortunately on our current platform (debian lenny) these tools seem to be broken; the only things hey seem to do reliably are set passwords and add posix users, asking them to do anything involving samba/windows causes errors. The idealx tools seem to be abandoned, and I don't know enough perl to try and fix them.
Since the idealx scripts seem to be abandoned, and most of the good samba+ldap how-tos references the idealx tools, I was wondering what people use nowadays to manage there ldap directories; surely they aren't importing .ldif files to add new users/machines like I've been doing. Are people just writing thier own management scripts/web-apps? Or are the smb=ldap tools just broke on debian?how to generate the NT/LM password hashes and proper SIDs, does anybody have anything they could point me to about this?
I am trying to configure and compile the pam_ldap and nss_ldap for MIPS architecture. for this they need ldap library. so I am trying to compile openldap code for MIPS first, but the configuration is failing.The command and options used for configuration is as follows.