Selinux and redhat ES 4
- From: "Bliss, Aaron" <ABliss@xxxxxxxxxxxxxxxxx>
- Date: Tue, 23 May 2006 13:14:26 -0400
Hi everyone; I have a centralized logging server setup using syslog-ng
and redhat ES 4; I would like to enable selinux on this box (right now
it's in warn only mode), however I'm seeing the following warning in
/var/log/messages
kernel: audit(1148404063.302:9): avc: denied { read } for pid=2424
comm="syslog-ng" name="hosts" dev=dm-3 ino=64563
scontext=user_u:system_r:syslogd_t tcontext=root:object_r:var_log_t
tclass=lnk_file
I expect that if I put selinux to enforce, then I'm going to loose some
logging functionality; does anyone know how to enable the syslog-ng
selinux policy? Thanks
Syslong-ng policy looks like this:
getsebool use_syslogng
use_syslogng --> active
Aaron
Confidentiality Notice:
The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information. If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited. If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
- Prev by Date: Re: need help about sendmail
- Next by Date: Re: awk scripts problem after upgrade from RHEL-2.1 to RHEL-4
- Previous by thread: strange problem - server hangs at boot Runlevel 3 - RHEL4 - reinstalled
- Next by thread: 32 bits ORACLE under 64 bits Redhat Environment??
- Index(es):
Relevant Pages
- Re: SElinux
... The layer of security is for your ... Heck - why not shut off iptables?
... I decline to have SELinux occasionally grab the steering wheel and try to take my machine
over a cliff so I can act as Redhat's Beta Tester for their selinux-policies. ... It is, and will
remain, turned disabled on my production servers until I am comfortable that more learning curve incidents
by Redhat where an update causes previously working machines to suddenly have problems are not
going to happen. ... (Fedora) - [Full-disclosure] What RedHat doesnt want you to know about ExecShield (without NX)
... Few of you may have seen my comments on the following article in RedHat ...
I think the issue deserves more widespread attention among the security ... effort of disinformation
for both SELinux and ExecShield. ... where I also comment upon some ExecShield behavior
under a non-NX system. ... (Full-Disclosure) - Re: util-linux: orphan
... horror stories that if you enabled SELinux, ... because of all sorts
of SELinux policy violations, ... required an SELinux wizard to configure SELinux policy
to enable a 3rd ... is too short to enable SELinux", and so my limited experience is ...
(Linux-Kernel) - Re: SELinux and serving from home directories
... Redhat seems to be blocking these when SElinux ... Is there any
way to allow these folders to be served ... (RedHat) - SELinux and serving from home directories
... Redhat seems to be blocking these when SElinux ... Is there any
way to allow these folders to be served ... (RedHat)
