Ah ha! So it is SELinux. How do I tell SELinux to let this happen?
(major SELinux newbie)
Thanks!
type=AVC msg=audit(1119209957.460:1957770): avc: denied
{ name_bind } for pid=3636 comm="dhcpd" src=67
scontext=root:system_r:dhcpd_t
tcontext=system_u:object_r:reserved_port_t tclass=udp_socket
type=SYSCALL msg=audit(1119209957.460:1957770): arch=c000003e
syscall=49 success=no exit=-13 a0=6 a1=7ffffff31010 a2=10
a3=7ffffff3102c items=0 pid=3636 auid=4294967295 uid=0 gid=0 euid=0
suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="dhcpd"
exe="/usr/sbin/dhcpd"
On Jun 19, 2005, at 3:59 PM, Ivan Gyurdiev wrote:
On Sun, 2005-06-19 at 15:53 -0400, Jon August wrote:
> Hi there,
>
> I just installed FC4 and I'm trying to get DHCP started, so I pulled
> my dhcpd.conf from the machine we're moving it from, and checked to
> see if any of the syntax had changed. All looks good, but when I try
> to start dhcpd I get the following.
>
> Is SELinux preventing dhcp from binding to the port? I don't see any
> audit messages in /var/log/messages.
>
What about /var/log/audit.log ?
Is audit running?
You can run SELinux in permissive mode to check.
(/usr/sbin/setenforce 0;
/etc/init.d/dhcpd restart;
/usr/sbin/setenforce 1;)