Server :: Ubuntu SELinux Is Disabled?
Nov 18, 2010am trying to Selinux in enforcing mode, but its giving below error.I have Ubuntu server 10.10root@ubuntu:/common# setenforce 1setenforce: SELinux is disabled
View 1 Replies
ADVERTISEMENT
Fedora :: Disabled SELinux And The Firewall Before Began Updates?
Jan 18, 2010I've just installed Fedora 12 (32 bit) KDE on my test system and have a couple of issues.I haven't played with Fedora for a couple of years, so I'm not very familiar with it. I haven't had the problems with Kubuntu, OpenSUSE nor Mandriva, so I'm a bit in the dark here. I'll see if someone can help me with my sound issue, before moving on to the next problem. I've read seveal posts about sound issues, but not sure exactly if any are the same as I'm having.
After installing Fedora 12, sound was all working fine. I think installed all the available updates, which is when the problem began. Basically, I have sound in Hulu, Firefox videos such as CNN, etc. But, I have no sound at startup or shutdown....system sounds, I suppose I should say. I have disabled SELinux and the firewall, before I began updates. Looking in KInfoCenter under Audio, I see:
Audio Devices: NOT ENABLED IN CONF VIA8247 with ALC655 at 0xc400 IRQ11 In System Settings>Multimedia I see Internal Audio Analog Stereo as the only device shown. I have unchecked Mute and have all volume controls up all the way in KMix, which shows HDA Nvidia on the tab.
Red Hat / Fedora :: Boot Hangs After SELinux: Disabled At Runtime?
Mar 8, 2010My Redhat box hangs on boot up after "SELinux: Disbled at runtime" Code: raid1: raid set md0 active with 2 out of 2 mirrors
[Code]...
Software :: Boot Hangs After SELinux: Disabled At Runtime
Mar 8, 2010My Redhat box hangs on boot up after "SELinux: Disbled at runtime" ...
Code:
raid1: raid set md0 active with 2 out of 2 mirrors
md: ... autorun DONE.
EXT3-fs: INFO: recovery required on readonly filesystem.
EXT3-fs: write access will be enabled during recovery.
[Code]....
how to restore them properly.
Fedora Servers :: SELinux - Find A List Of All The Booleans For SELinux (10) Using Getsebool -a
Feb 23, 2009You can find a list of all the booleans for SELinux (Fedora 10) using getsebool -a My question is, is there a reference online that describes each one. Most of obvious but it's one of those "I have to know because it's there situation).
View 5 Replies View RelatedServer :: Allow Samba Server From Selinux Firewall In CentOS?
Jun 8, 2009I'm using CentOS 5.3, and I want to allow my samba server from selinux. I disabled my selinux and it works fine, but I want to keep my seline firewall on and want to allow other workstation to access my samba server.
View 8 Replies View RelatedServer :: SELinux Permissions \ Getting The Error Described In This Bug?
May 20, 2011I'm getting the error described in this bug. The fix is described in the bug:Code:The following additional SELinux permissions were found to resolve the situation:
samba_domtrans_winbind_helper(httpd_t)
allow httpd_t winbind_helper_t:process signal;
apache_append_log(winbind_helper_t)
[code].....
Server :: Where Are The Booleans For SELinux Stored
Sep 23, 2010I always thought that whenever /usr/sbin/setsebool was used, it would write either a "0" or a "1" into the corresponding boolean file. All SELinux boolean files are in /selinux/booleans but If I check, for example, this boolean ...
[Code]....
Server :: Connecting To Sshd On Ubuntu 9.10. Logs Point To SELinux ?
Feb 14, 2011I'm trying to ssh into my Ubuntu box, but the connection is getting denied.
When I look at /var/log/auth.log, I see the following:
Code:
I googled for this, and ran across the following: [url]
Here's the part that I think relates to the problem that I'm having:
Quote:
It's not clear from context which configuration file needs to be edited, and I'm not at all familiar with SELinux configuration.
Server :: Permissions With Pam_mkhomedir.so When SELinux Set To Enforce
Mar 14, 2011I've got a red hat box joined to a win 2k3 domain and I'm using pam_mkhomedir.so to create user's home directories on first login to the box. extract from /etc/pam.d/sshd Code: session required pam_mkhomedir.so skel=/etc/skel umask=0022 The problem I have is that this only works if I switch SELINUX off (i.e. set enforcing to disabled ). Unfortunately, the error messages are not very helpful. Extract from /var/log/secure below:
[Code]...
CentOS 5 Server :: Where Are The Booleans For SELinux Stored
Sep 24, 2010I always thought that whenever /usr/sbin/setsebool was used, it would write either a "0" or a "1" into the corresponding boolean file. All SELinux boolean files are in /selinux/booleans but If I check, for example, this boolean ...
$ sudo /usr/sbin/getsebool ftp_home_dir
ftp_home_dir --> on
It returns a positive, but if I do
$ sudo less /selinux/booleans/ftp_home_dir
I get ... read error (Press Return)
Furthermore, if I list the boolean file itself, it shows it to be empty
$ sudo ls -l /selinux/booleans/ftp_home_dir
-rw-r--r-- 1 root root 0 Aug 9 11:09 /selinux/booleans/ftp_home_dir
Where is SELinux storing the booleans then?
This is on CentOS 5.4
CentOS 5 Server :: Can't Set Vsftpd With SElinux Properly / Sort It?
Apr 8, 2010I'm able to connect to ftp as a virtual user. It was also difficult as nowhere mentioned, that it should be done with SSL. Anyway I found the answer and got connection. But now I can't connect to ftp server as system user. It gives me "530 Permission denied", or if I delete the user from the file denied_users, - "530 Login incorrect".
1. Still I can't understand, how I can log in to FTP server with a system user.Also some other questions regarding this matter:
2. My httpd server Apache has a virtual hosts located in "/home" directory.The scripts create users in "/var/ftp virtual_users". Will it cause any problem if I will change them to "/home"? All I need to do with this is ability to have several virtual hosts in one server with separate access to each of them via FTP. And 1 account with access to all files in "/home".
3. In my ftp client I can see the owner of virtual host "ftp" instead of username.
Security :: Restart Postgres In Server - Selinux Is Not Letting It Log Anything
Jan 28, 2010Whenever i restart postgres in my server, Selinux is not letting it log anything. In /var/log/messages, it says.
Quote: Jan 28 14:15:43 dataserver kernel: audit(1264709743.263:38): avc: denied { append } for pid=5986 comm="postmaster" name="pgsql.log" dev=sda8 ino=3932166 scontext=root:system_r: postgresql_t tcontext=root: object_r:var_log_t tclass=file
Jan 28 14:15:43 dataserver kernel: audit(1264709743.263:39): avc: denied { append } for pid=5986 comm="postmaster" name="pgsql.log" dev=sda8 ino=3932166 scontext=root:system_r: postgresql_t tcontext=root: object_r:var_log_t tclass=file
I cannot disable SeLinux in this server.
Server :: Can Set Selinux To Permissive / When Reboot It Turns Back On?
Jul 19, 2010It seem that I can set selinux to permissive but when i reboot it turns back on? Can I unistall it? I am running RED HAY 5 and Centos 4
View 2 Replies View RelatedCentOS 5 Server :: Cannot Acess Samba Share Unless SElinux Is Off?
May 8, 2009I don't think it has anything to do with the config file.More to do with SElinux. I need to know how to configure SElinux so I can see my samba share when SELinuxis on. When I setenforce 0 I can seen all the files and folders set it to setenforce 1 cannot see anything.Here is the output when I ran [root@fileserver /]# getsebool -a | grep smballow_smbd_anon_write --> onsmbd_disable_trans --> onThese two options were off I tried turning them on.This is another one of the commands I tried running. I did change a few options but I am not sure which I do need to change. I am running a stand alone server so I don't need the DC option.
[root@fileserver /]# getsebool -a | grep samba
samba_domain_controller --> off
samba_enable_home_dirs --> off
[code]....
Fedora Security :: Get A Server Up And Running With SELinux Fully Enabled?
Mar 19, 2009I decided that I'd torture myself and try to get a server up and running with SELinux fully enabled. I so far have figured out virtual hosting, vsftpd, and SSH to work with it nicely, but I can't figure out what to do to get AWstats to be viewable through a browser with SELinux enabled. This is what I get from /var/log/messages:
Code:
Mar 19 15:09:34 localhost kernel: type=1400 audit(1237496974.987:69): avc: denied { getattr } for pid=4769 comm="httpd" path="/usr/share/awstats/wwwroot/cgi-bin/awstats.pl" dev=sda1 ino=1267968 scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:httpd_awstats_script_exec_t:s0 tclass=file
Mar 19 15:09:34 localhost kernel: type=1400 audit(1237496974.987:70): avc: denied { getattr } for pid=4769 comm="httpd" path="/usr/share/awstats/wwwroot/cgi-bin/awstats.pl" dev=sda1 ino=1267968 scontext=unconfined_u:system_r:httpd_t:s0 tcontext=system_u:object_r:httpd_awstats_script_exec_t:s0 tclass=file
Could someone explain to me what I should be looking for in these messages? Or what I would need to do to fix it?
Server :: Samba And SELinux - Share The User Home Directories?
Oct 6, 2010I'm running a Samba server (3.5.2-60.fc13) on Fedora 13 (64 bit). I want to share the user home directories and want to allow following of symlinks out of the share tree. So in smb.conf I used
unix extensions = no
wide links = yes
For SELinux I did:
setsebool -P samba_enable_home_dirs=1
getsebool -a | grep samba
samba_create_home_dirs --> off
samba_domain_controller --> off
[code]....
However I can't follow the symlinks when mounting my home directory on a Windows machine, unless I disable SeLinux.
Server :: System Admin Disabled Ad Account?
Dec 7, 2010I have RHEL 5 installed on my PC.After lots of efforts i manage to put it into a domain(by configuring kerbose,winbind and smb).I can see all domaind groups (wbinfo -u/-g).Whenever i tried to login into this machine using domain login, for a first time it create folder in /home/DOMAIN/ and then displays "system sdministrator has disabled your Account"
View 1 Replies View RelatedCentOS 5 Server :: Named And Access Rights / SELinux - Access Denied
Aug 24, 2010I configure named and stumble upon the following problem: named is serious about user rights, every config file named uses should be named:named. I set rights to named:named as follows, but they get changed to root:named when I restart named as root. The same thing happens with SELinux context. This results in access denied type errors.
View 1 Replies View RelatedServer :: Error: No Route To Host" Both Systems Ping Each Other And Firewall Is Also Disabled
Feb 2, 2010using redhat on server machine and open suse on client machine.i have installed nfs server and and it is running properly but when i want to mount shares from my client machine it gives the following.
error. "mount.nfs: mount to NFS server '10.3.31.146:/share' failed: System Error: No route to host" both systems ping each other and firewall is also disabled. another problem is when i remotely access from my server machine to client machine it gives the following error ssh:connect to host 10.3.31.147 port 22:connection refused what can be the problem?
Server :: Error - Machine 127.0.0.1 Does Not Support SAMR Connections, But LANMAN Password Changed Are Disabled
Mar 17, 2010I am having following problem. If I try to change my SMB password, it throws following error >
Quote:
~>smbpasswd
Old SMB password:
New SMB password:
Retype new SMB password:
Server did not provide 'target information', required for NTLMv2
rpc_pipe_bind: rpc_send_auth_reply failed.
machine 127.0.0.1 does not support SAMR connections, but LANMAN password changed are disabled
Failed to change password for user1
Fedora :: Samba / Server Requested Plaintext Password But 'client Plaintext Auth' Is Disabled?
Apr 27, 2010I am having a hard time with samba. Please point me in the right direction! I cant seem to get the web configuration tool working either.
smbclient -L teraquad
Server requested plaintext password but 'client plaintext auth' is disabled
session setup failed: SUCCESS - 0
smbclient -L teraquad -N
Domain=[OFFICE] OS=[Unix] Server=[Samba 3.4.7-58.fc12]
code....
Server :: Setting "have_innodb" Disabled?
Apr 18, 2011I just installed Mysql on Centos 5.5, the same way I have on hundreds of VM's. However, this time around a developer has pointed out that the setting "have_innodb" is Disabled. Why did this happen on a default install? How do i fix it?
View 2 Replies View RelatedUbuntu Security :: SELinux Project Not Compatible
Apr 20, 2011I would like to secure my site and I want to implement CAS for SSO, SELinux for the permission into my server and CODA, the last one I have read is not compatible with it, but I don't know if somebody have tried something. The most important request from HQ is use SELinux, they're conviced is the best one for the user permissions. I tried to look for some info in internet but there almost nothing.
View 2 Replies View RelatedUbuntu :: Labeling Tabs Of Chromium With Selinux?
Dec 30, 2010I'm new in Selinux , and I want to label the URLs of the tabs of Chromium browser with label security .
For example , If I want to access the sites of "[URL]" , then the tab will get the label SElinux "search_engine_t".
Fedora :: SELinux Will Not Allow Tor?
Jan 17, 2011I'm running into some problems setting up Tor on Fedora 14. I have followed the following guide to a T (although I realize it is for Fedora 10):orum.org/showthread.php?t=211516.I believe the problem is SELinux... but I'm not sure. Has anyone had any success running Tor in Fedora 14 without it bugging out? If not, is there some sort of Unix alternative?
View 12 Replies View RelatedFedora :: NTP Is Blocked By SElinux?
Jul 18, 2009How can I solve the problem?
View 1 Replies View RelatedFedora :: SELinux Does Not Like Wine
Jan 18, 2010There are several options available, such as "Ignore Alert" and "Turn off memory protection". What are the consequences of choosing one or the other?I'm new to Fedora and I'm not familiar with SELinux. Can someone please give me guidelines (or explanation) on how to deal with SELinux alerts?
View 7 Replies View RelatedGeneral :: Is Selinux Running On Box Or Not
Apr 22, 2010I have installed Fedora 13 Beta released last week. I want to know if selinux is running on my box or not?What command can provide me such info?
View 5 Replies View RelatedSoftware :: Is SELinux Really Useful For A Desktop
Dec 29, 2010I have been using Fedora for about two years. I love it except one thing: I can not get used to SELinux. SELinux in Fedora evolves rapidly and it is not uncommon that an updated SELinux breaks up other things. So here is my question: is it really useful for a desktop which doesn't have a whole bunches of services running except OpenSSH? I am deciding whether to disable SELinux for good.
View 2 Replies View Related