I configured DNS in my server while That time SELINUX enabled means It show permission denied error and some errors, but i checked all the directory permissions and all its every thing correct only but not worked..At last I just disabled the SELINUX then its working fine.I Heard SELINUX is for security for Linux operating systems, but why i disabled means only its working??
View 3 Repliesi have dual OS in my hard disk. win xp and rhel5. i used use ntfs partition too while working in linux. There is no problem until i enable selinux. When i enabled that, its giving some error at startup and left the partition unmounted. But manually i can mount after logged in. But i need it at the startup itself. How to solve this.i am installed dkms* dkms-fuse* fuse* and fuse-ntfs-3g* rpms to use the ntfs partitions.
View 4 Replies View RelatedTrying to keep selinux enabled. When I start SeLinux Troubleshooter from the menu, which is inautostart as well, It tells me SELinux not enabled, sealert will not run on nonSELinus systems".How do I get SELinux permanently started then
View 10 Replies View RelatedI installed Nvidia drivers n my Fedora 14 and was working just fine!I also have disabled Nouveau to make it work.But after i changed the selinux to permissive my X no longer loads!
View 1 Replies View RelatedMy understanding is SELinux adds type enforcement to standard Linux. This means that both the standard Linux and enhanced SELinux access controls must be satisfied to access an object. Which means that thing that is prevented to do in the normal standard Linux will be also prevented in the SELinux System? Does SELinux make it possible to run a non-root software to bind to a port < 1024? something that standard Linux won't allow? If not, what other suggestions do you have for allowing a program to run as non-root but able to bind to privileged ports? I know all about using the port re-direction such as ipchains, iptables.
View 4 Replies View RelatedI decided that I'd torture myself and try to get a server up and running with SELinux fully enabled. I so far have figured out virtual hosting, vsftpd, and SSH to work with it nicely, but I can't figure out what to do to get AWstats to be viewable through a browser with SELinux enabled. This is what I get from /var/log/messages:
Code:
Mar 19 15:09:34 localhost kernel: type=1400 audit(1237496974.987:69): avc: denied { getattr } for pid=4769 comm="httpd" path="/usr/share/awstats/wwwroot/cgi-bin/awstats.pl" dev=sda1 ino=1267968 scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:httpd_awstats_script_exec_t:s0 tclass=file
Mar 19 15:09:34 localhost kernel: type=1400 audit(1237496974.987:70): avc: denied { getattr } for pid=4769 comm="httpd" path="/usr/share/awstats/wwwroot/cgi-bin/awstats.pl" dev=sda1 ino=1267968 scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:httpd_awstats_script_exec_t:s0 tclass=file
Could someone explain to me what I should be looking for in these messages? Or what I would need to do to fix it?
I have installed CentOS and Redhat5 on a LVM partition and selinux is enabled. Both OS's share the same /home partition with one user with the same login(gc) and same uid (1000). The problem I am having is that gc can login with all permissions etc on the OS that was installed first (CentOS). For the redhat OS gc can login but cannot write to the home directory (or startx since X needs to write to Xauthority)Here are outputs - 1st CentOS
[gc@shuttle ~]$ ll -Zd $HOME
drwx------ gc gc system_ubject_r:unlabeled_t /home/gc
[gc@shuttle ~]$ stat $HOME
[code]....
If Compiz works, does that mean 3d is working? In other words I can install and play games in wine. Compiz's website states that it is hardware accelerated and uses OpenGL. Does that mean 3d? I am running FC13 64bit on an HP Pavillion DV7-2185DX. The video card is ATI Mobility Radeon HD 4650.
View 2 Replies View RelatedYou can find a list of all the booleans for SELinux (Fedora 10) using getsebool -a My question is, is there a reference online that describes each one. Most of obvious but it's one of those "I have to know because it's there situation).
View 5 Replies View Relatedwould the following command wipe an entire drive clean (partition table included)? Code: dd if=/dev/urandom of=/dev/sda bs=512.I was wondering what the 'bs' part means? Would it be better to omit that?
View 13 Replies View RelatedI am using FC 10. I did an rsync to get a software Matlab from the local lan. But Matlab does not work. The error is:
Quote:
License checkout failed.
License Manager Error -96
MATLAB is unable to connect to the license server.
[code]....
I have set SELinux as Permissive for the current enforcing mode, while the default enforcing mode is Enforced. I did rsync in this way:
Code:
rsync mecsmrao@10.16.4.32:/home/pkg/lic/matlab-7.6/ /usr/local/pkgs/matlab_7.6_r2008a/ -avtpog -e ssh
What am i supposed to do?
I've just finished installing debian 5.0.3 on my pc and i chose the installation set for the Intel x86 architecture. Does it mean that my OS is then 32 bit and will be used to run only 32 bits applications ? I'm doing also software developments with gcc with my linux box. Using this os and the gcc tools, for this os, will my software only be 32 bits ?
View 1 Replies View RelatedAnyone know what means the values of Load Average?
load average: 0.00, 0.00, 0.04
load average: 17.50, 13.44, 12.70
Sometime is low and many times is high.
I had this strange and quite stressy situation today. I change something in the config of the NS1 (primary nameserver) and because of that BIND9 went down. Seemed that, unfortunately, the sec. NS, NS2, did not took over.
When I first did /etc/init.d/bind9 reload I got this error:
Code:
I was able to fix this. I guess I was because now the error has gone. I found the solution on some blog (I remember it has something to do with 'pkill lwresd' and restart bind a couple times.
Anyway, to test the NS1, on my local computer I set up the NS1 as primary and only nameserver. This works fine to test NSs. This way I can surf the internet and ping the domains that are on the nameserver.
Now when I do the same with my NS2 I can't do nothing. Cannot ping to anything, surf of course works neither.
But from my server ifself, NS2, I can ping everything. Every NSlookup is done via an external nameserver thus logical.
Furthermore everything looks normal on the NS2. No errors, I can change, add, delete, apply, restart, reload without any problem.
i am trying to run bind in centos 6 and bind keeps giving me errors every time i check all of the configurations. the named.conf file works fine but the zone files keep giving me errors heres the contents of my named.conf file
Code:
options {
directory "/var/named";
listen-on port 53 { any; };
allow-query { any; };
[Code]....
I saw an article use the following cat command to create a new text file:$ cat > first.sh << ENDAnd then after press the 'return' buttion, a '>' sign appeared expecting you to input the content. If I type 'END' then the 'return' button, then a new text file is created with what I just typed...I'd like to know what's the differnece in just type:$ cat > first.shwithout the '<<' sign?What '<<' really means? I cannot find it's meaning anywere... seems it's not in the redirection section.
View 6 Replies View RelatedI've been trying to get SELinux working in OpenSUSE 11.2. So far I can get to runlevel 3 with enforcing=0. Before I start tinkering with audit2allow, The 11.2 repository gives me these policy rpms:
[URL]
But that version of policy has some issues in OpenSUSE:
1) failure to allow the graphical desktop to load (even with enforcing=0) . The following message appears in the console during boot:
** (gdm:1073): WARNING **: Couldn't connect to system bus: A SELinux policy prevents this sender from sending this message to this recipient (rejected message had sender "(unset)" interface "org.freedesktop.DBus" member "Hello" erro name "(unset)" destination "org.freedesktop.DBus") startproc: exit status of parent of /usr/sbin/gdm: 1 Since enforcing is off, I'm surprised to see a message like that. SELinux shouldn't be preventing anything, so I don't see how modifying policy will solve that. Ideas?
2) Attempting to boot to runlevel 5 with kernel parms "security=selinux selinux=1 enforcing=0", I'm dropped off in runlevel 3 instead. I'm getting a couple of pages of AVC errors after boot (see below). I've tried several other versions of the policy without luck:
- the version included in Fedora 12 (refpolicy-2.2009117
- the latest release from Tresys
- the latest from the repository at Tresys
[Code]....
i have xp and virtual guest centos 5.i install apache, bind, squid and webmin through xp, i can access URL...but when i start my squid, put the ip in the browser proxy settings, when i logon its ip turn to URL...I believe my bind is working. Though theres some little glitch. I dont know where.and i already put my servers bind ip to my winxp primary dns server settings.
View 1 Replies View RelatedI've checked under system>preferences>keyboard shortcuts, and the shortcut is enabled but not working.Is there another setting that is conflicting somewhere that i can't find?Something to do with CompizConfig settings manager? (I think but can't be sure that's when they stopped working)
View 5 Replies View RelatedMy Question is I have installed the ssh key authentication in Server A. User can connect this using key file via SSH. without authentication user can't connect this system via SSH. Now I am trying to copy the file from Server B through SCP command. But it is not working. While I am trying use this command from Server B I am getting below error "ssh: connect to host xxx.xxx.xxx.xxx port 22: Connection timed out lost connection". xxx.xxx.xxx.xxx is Server A. SSH is enabled in both server A,B.
why SCP command is not working?
Not quite sure what could be wrong here. The settings are enabled, but none of the compiz functions are working. The were working on Friday. I did some searching but I'm not even sure what the problem is, or how to diagnose it. I'm running 10.10, now.. any help is appreciated. Even if you just tell me what I need to be searching for to find a solution.
View 9 Replies View RelatedI am using the routing multiple upstream providers solution available on internet using iproute and gwping script. It works great but the problem I am facing is;
Code:
ip route add 192.168.15.0/24 dev eth1 src 192.168.15.2 table ptcl
ip route add default via 192.168.15.1 table ptcl
ip route add 192.168.16.0/24 dev eth2 src 192.168.16.2 table nayatel
ip route add default via 192.168.16.1 table nayatel
[code]....
I am configuring bind9 on fedora 9(sulphur).I have configured /etc/named.conf and created zone file in /var/named/I have started the service but when I am executing the command nslookup mydomain.com it is not able to resolve the name.Another problem I am facing when I do telnet localhost 53,I am able to connect.but when I do telnet myip 53 it does not connect.Seems to be a firewall problem but I ve disabled iptables selinux completely even I ve disabled dnsmasq but still not working.
View 1 Replies View RelatedThe problem is that I have set up a test installation with DHCP server and DNS server on Fedora 14 and want to set up dynamic updates from the DHCPD to the NAMED. The problem is that any attempts to make updates of the DNS server fails with a "SERVFAIL" error. I can not even update it through the NSUPDATE tool. This is NAMED.CONF:
Code:
options {
directory "/var/named";
[code]....
When i have enable xinerama for 2 displays and i enable visual effect it says The "Composite extension is not available" but i have enabled it in "xorg.conf" but effect are working with not enabled xinerama.
Here is my xorg.conf
Code:
# nvidia-settings: X configuration file generated by nvidia-settings
# nvidia-settings: version 1.0 (buildd@palmer) Fri Apr 9 10:35:18 UTC 2010
Section "ServerLayout"
# Removed Option "Xinerama" "0"
[Code]...
Im a new member here.So please don't get mad at me.If i posted on a wrong section(Am I in the right section?) By the way,Here is my problem. My graphic card is Intel 82852/82855.And it passes the Ubuntu Desktop Effects requirement. I am aware of enabling the graphic card in Ubuntu 10.10, Since enabling the drivers was successful. I enabled the desktop effects.After i switched to Normal(Graphic Mode)the screen went blank. Then after i clicked ALT+TAB. there is an option to keep this option or not.I clicked Keep this settings. Then i proceeded in Web browsing(because i'm a web addict). Then i click CTRL+ALT+LEFT/RIGHT For the workspaces to switch. Then i found this 4 square transparent with black margin boxes.Which has a weird distorting effect.That effect is going crazy. Then i rebooted(Hoping to fix the problem).Then it is still there.
View 1 Replies View RelatedI am using Ubuntu, now installed KDE (kubuntu) and I have Bluetooth working and enabled but for some strange reason the bluetooth scan is not finding any devices in spite of the fact that I have my mobile phone with bluetooth on and discoverable. My laptop is HP Touchsmart tm2 2102tu. Here's output of my hciconfig -a
BD Address: 70:F3:95:74:7D:CE ACL MTU: 310:10 SCO MTU: 64:8
UP RUNNING PSCAN ISCAN
RX bytes:1099 acl:0 sco:0 events:42 errors:0
[code]....
Neither hcitool scan nor scanning with Gnome or KDE bluetooth settings is working for me.
I have problem on VPS running opensuse. When I enable firewall outbound connections stop working. I have tried everything I know (not much when it comes to firewall (iptables)) but could not solve this.
Here is my ifconfig:
Code:
I used xxx.xxx.xxx.xxx to hide real address.
My system: Slackware 13.0, 512MB RAM, x86 This is the webcam I'm trying to get working:
Quote:
Originally Posted by lsusb
2460 Pixart Imaging, Inc. Q-TEC WEBCAM 100
When I plug the webcam in (usb), the led starts to shine, indicating that it is filming. When I use a program (XSane for example) and click the 'scan' button, the led turns off! It seems that the cam works when it shouldn't, and vice versa.
what is bind vs bind-chroot vs caching-nameserver ?what is the different between eatch others ?
View 7 Replies View Related