Re: Selinux Errors

From: noi ance <noi@xxxxxxxx>
Date: Thu, 10 Apr 2008 18:25:45 GMT

On Wed, 09 Apr 2008 13:51:58 -0700, hillzy76 typed this message:

I recently setup a new web server with EL5. The previous server was Deb
(sarge). I am fairly unfamiliar with selinux and I am receiving a bunch
of avc denial errors. I currently have selinux set to permissive but
would like to have the extra layer of security. The server is home to
several sites and it has in the past under previous admins had viruses
and other issues. I need help looking at the denial errors and deciding
which I should write new rules for and which I should find and remove
from the server.

If this should be posted else ware let me know.

For the audit2allow, audit2why reply I forgot to add link

http://www.redhat.com/magazine/006apr05/features/selinux/

a Selinux guide. Since you're running a server good luck.
.

References:
- Selinux Errors
  - From: hillzy76

Prev by Date: Re: Selinux Errors
Next by Date: Cannot boot
Previous by thread: Re: Selinux Errors
Next by thread: Cannot boot
Index(es):
- Date
- Thread

Relevant Pages

Selinux Errors
... I recently setup a new web server with EL5. ... bunch of avc denial errors. ... I currently have selinux set to permissive ...
(linux.redhat)
Re: SElinux ?
... server environment, ... bear in mind that installing a product on a live server does run ... Another time you install a package now that SELinux ... any fine-grained security system like that is going to need ...
(uk.comp.os.linux)
Re: NFS: permission denied. Help?
... My file server is running CentOS5 (SELinux targeted) and my Workstation ... CentOS server) and I'm getting "EACCESS" when I try to mount the share. ... I restarted the nfs, ...
(Fedora)
Re: [AppArmor 39/45] AppArmor: Profile loading and manipulation, pathname matching
... policy applied on the server as well as the client to ensure that the ... SELinux does depend on the correctness of the kernel. ... Then yours isn't mandatory access control, nor is it confinement. ...
(Linux-Kernel)
Re: [AppArmor 39/45] AppArmor: Profile loading and manipulation, pathname matching
... policy applied on the server as well as the client to ensure that the ... SELinux does depend on the correctness of the kernel. ... inheritance, e.g. if you specify an ACL on a directory, then all files ...
(Linux-Kernel)