RE: SELinux on RH3
by Alex Ackerman
> bounces(a)redhat.com] On Behalf Of Colin Walters
> Sent: Friday, December 17, 2004 6:56 PM
> To: fedora-selinux-list(a)redhat.com
> Subject: Re: SELinux on RH3
>
> On Fri, 2004-12-17 at 23:42 +0000, Juan Espino wrote:
> > Hello everybody,
> >
> > I'm new in SELinux world and I want to know if I can install SELinux
> > on Red Hat Enterprise 3. Actually I'm using White Box Enterprise
and
> > I'm really interested if I can run SELinux with this linux
> > distribution or if you think maybe change to another distro like
> > fedora I really apreciate your recommendation, thanks.
>
> I would be a lot of work. My suggestion is to just wait for RHEL4.
You
> can test with Fedora Core 3 in the meantime.
RHEL 4 Beta 2 is available for download and it uses SELinux. I've heard
(don't quote me) that RHEL 4 will go final Feb/Mar timeframe.
Alex Ackerman
19 years, 4 months
Loadlin
by Moller
Hello!
I want to dualboot FedoraCore3 with Win 98.
How do I do it ?
Philip
19 years, 4 months
SELinux... a never ending story!
by Giuseppe Greco
Hi all,
to solve the problems I described in my previous emails,
I've backed up my configuration and reinstalled FC3 from
scratch.
Now I'm not able to run squrrelmail... I always get the
following error message:
audit(1103219472.797:0): avc: denied { read } for pid=25107
exe=/usr/sbin/httpd name=sh dev=dm-0 ino=96012
scontext=root:system_r:httpd_t
tcontext=system_u:object_r:bin_t tclass=lnk_file
Any idea how to help a poor desperate?
j3d.
--
----------------------------------------
Giuseppe Greco
::agamura::
phone: +41 (0)91 604 67 65
mobile: +41 (0)79 602 99 27
email: giuseppe.greco(a)agamura.com
web: www.agamura.com
----------------------------------------
19 years, 4 months
Problem installing kernel-2.6.9-1.1037_FC4, mkinitrd, ...
by Tom London
Running strict/enforcing, latest Rawhide.
installing today's kernel reports:
Installing: kernel 100 % done 1/1
/bin/bash: /root/.bashrc: Permission denied
ln: creating symbolic link `/tmp/initrd.L17712/sbin' to `bin':
Permission deniedln: creating symbolic link
`/tmp/initrd.L17712/sbin/modprobe' to `/sbin/nash': No such file or
directory
cp: cannot create regular file `/tmp/initrd.L17712/sbin/udev': No such
file or directory
ln: creating symbolic link `/tmp/initrd.L17712/sbin/udevstart' to
`udev': No such file or directory
ln: creating symbolic link `/tmp/initrd.L17712/sbin/hotplug' to
`/sbin/nash': No such file or directory
with the following AVC;
Dec 17 08:25:06 fedora kernel: audit(1103300706.529:0): avc: denied
{ create } for pid=17723 exe=/bin/ln name=sbin
scontext=root:sysadm_r:bootloader_t
tcontext=root:object_r:bootloader_tmp_t tclass=lnk_file
This patch seems to fix it.....
tom
--- bootloader.te.old 2004-12-17 08:31:33.195853461 -0800
+++ bootloader.te 2004-12-17 08:27:51.453938491 -0800
@@ -29,7 +29,7 @@
allow bootloader_t { initrc_t privfd }:fd use;
tmp_domain(bootloader, `, device_type')
-allow bootloader_t bootloader_tmp_t:devfile_class_set create_file_perms;
+allow bootloader_t bootloader_tmp_t:{ devfile_class_set lnk_file }
create_file_perms;
read_locale(bootloader_t)
--
Tom London
19 years, 4 months
sql table under fedora core3
by FRANCOIS Dufour
hi to all !
ive got an jsp aplication running on tomcat4 alredy instaled whit sucess
using/local folder
i add a couple problem seting it up but now its ok
my question is i have my sql table created under window os
how do i transfer it (copie it were) so my jsp aplication can find its table
under fedora core3
the web app only need mysql running whit its table loaded in
as far ive read today its a pyton aplication that control mysql
thanks in advance
friendly
francoisdufour(a)hotmail.com
administrateur http://entre-nous.qc.tc
19 years, 4 months
dhcp_defined
by Karsten Wade
Both dhcpd.fc and dhcpc.fc have an ifdef statement for `dhcp_defined'.
It seems to be related to pump usage in dhcpc.fc.
I can't find where dhcp_defined gets set to true or false. What is this
for and how is it used?
Somehow I feel as if I'm missing something obvious. However, this is
the only *_defined I can find in the policy.
thx - Karsten
--
Karsten Wade, RHCE, Sr. Tech Writer
a lemon is just a melon in disguise
http://people.redhat.com/kwade/
gpg fingerprint: 2680 DBFD D968 3141 0115 5F1B D992 0E06 AD0E 0C41
19 years, 4 months
Experimental Version of Dump available.
by Daniel J Walsh
I have added a new version of dump/restore to Rawhide to allow dumping
and restore of Extended Attributes.
Any testing you can do with this code would be appreciated.
Version dump-0.4b37-2
Dan
19 years, 4 months
I give up...
by Giuseppe Greco
Hi all,
I think I give up... no way to get my SELinux
system working as it should. For the moment,
I've just disabled it.
I've tried everything, but nothing... What's strange is
that I've these problems only on a machine where I updated
from FC1 to FC3. Others machines where I installed FC3
from scratch I've no problems at all.
j3d.
--
----------------------------------------
Giuseppe Greco
::agamura::
phone: +41 (0)91 604 67 65
mobile: +41 (0)79 602 99 27
email: giuseppe.greco(a)agamura.com
web: www.agamura.com
----------------------------------------
19 years, 4 months
squid.te
by Tom London
Running strict/enforcing, latest Rawhide
squid and initrc needs to create/write /var/log/squid/squid.out, etc
Suggest adding:
allow { squid_t initrc_t } squid_log_t:dir create_dir_perms;
allow { squid_t initrc_t } squid_log_t:file create_file_perms;
tom
--
Tom London
19 years, 4 months
disable selinux for httpd
by Arthur Stephens
Ok I have given up on getting httpd to work under selinux
I would like it disabled it for httpd.
I know how to do that temporary with setsebool but how does one make that permanent?
Maybe when I have some time to spare :) I can come back to it.
Arthur Stephens
Senior Sales Technician
Ptera Wireless Internet
astephens(a)ptera.net
509-927-Ptera
19 years, 5 months