March 2006 - websites - Fedora Mailing-Lists

web/html/download/mirrors updates-released-fc5, 1.12, 1.13 updates-released-fc5-redirect, 1.7, 1.8

by Paul W. Frields (pfrields)

Author: eitch Update of /cvs/fedora/web/html/download/mirrors In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv19676 Modified Files: updates-released-fc5 updates-released-fc5-redirect Log Message: added ftp.rhd.net mirror (http and ftp) Index: updates-released-fc5 =================================================================== RCS file: /cvs/fedora/web/html/download/mirrors/updates-released-fc5,v retrieving revision 1.12 retrieving revision 1.13 diff -u -r1.12 -r1.13 --- updates-released-fc5 29 Mar 2006 19:00:27 -0000 1.12 +++ updates-released-fc5 29 Mar 2006 19:58:48 -0000 1.13 @@ -38,3 +38,5 @@ http://ftp.ale.org/mirrors/fedora/linux/core/updates/5/$ARCH/ ftp://ftp.tecnoera.com/pub/fedora/linux/updates/5/$ARCH/ http://mirror.optus.net/fedora/core/updates/5/$ARCH/ +http://ftp.rhd.ru/pub/fedora/linux/core/updates/5/$ARCH/ +ftp://ftp.rhd.ru/pub/fedora/linux/core/updates/5/$ARCH/ Index: updates-released-fc5-redirect =================================================================== RCS file: /cvs/fedora/web/html/download/mirrors/updates-released-fc5-redirect,v retrieving revision 1.7 retrieving revision 1.8 diff -u -r1.7 -r1.8 --- updates-released-fc5-redirect 29 Mar 2006 19:00:27 -0000 1.7 +++ updates-released-fc5-redirect 29 Mar 2006 19:58:48 -0000 1.8 @@ -38,3 +38,5 @@ http://ftp.ale.org/mirrors/fedora/linux/core/updates/5/$ARCH/ ftp://ftp.tecnoera.com/pub/fedora/linux/updates/5/$ARCH/ http://mirror.optus.net/fedora/core/updates/5/$ARCH/ +http://ftp.rhd.ru/pub/fedora/linux/core/updates/5/$ARCH/ +ftp://ftp.rhd.ru/pub/fedora/linux/core/updates/5/$ARCH/

18 years, 1 month

1
0
0 / 0

web/html/Download mirrors.php,1.9,1.10

by Paul W. Frields (pfrields)

Author: trobert Update of /cvs/fedora/web/html/Download In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv18575 Modified Files: mirrors.php Log Message: Removed mirror site ftp://ftp.rhein-zeitung.de/mirrors/fedora.redhat.com/ . Admin did not respond to email sent from trobert at redhat.com . text copied to rt ticket # 176947 (Mar. 24th, 2006) Index: mirrors.php =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors.php,v retrieving revision 1.9 retrieving revision 1.10 diff -u -r1.9 -r1.10 --- mirrors.php 29 Mar 2006 19:11:03 -0000 1.9 +++ mirrors.php 29 Mar 2006 19:29:44 -0000 1.10 @@ -264,7 +264,6 @@ <li>rsync://ftp.join.uni-muenster.de/fedora-linux-core/ <li><A HREF="ftp://ftp.informatik.uni-frankfurt.de/pub/linux/Mirror/ftp.redhat.com/fed...">ftp://ftp.informatik.uni-frankfurt.de/pub/linux/Mirror/ftp.redhat.com/fed...</A></li> <li><A HREF="ftp://sunsite.informatik.rwth-aachen.de/pub/Linux/fedora-core/">ftp://sunsite.informatik.rwth-aachen.de/pub/Linux/fedora-core/</A></li> - <li><A HREF="ftp://ftp.rhein-zeitung.de/mirrors/fedora.redhat.com/">ftp://ftp.rhein-zeitung.de/mirrors/fedora.redhat.com/</A></li> <LI><A HREF="ftp://ftp.uni-erlangen.de/pub/Linux/MIRROR.fedora/core">ftp://ftp.uni-erlangen.de/pub/Linux/MIRROR.fedora/core</A></LI> <li><A HREF="http://ftp-stud.fht-esslingen.de/pub/Mirrors/fedora.redhat.com/linux/core/">http://ftp-stud.fht-esslingen.de/pub/Mirrors/fedora.redhat.com/linux/core/</A></li> <li><A HREF="ftp://ftp-stud.fht-esslingen.de/pub/Mirrors/fedora.redhat.com/linux/core/">ftp://ftp-stud.fht-esslingen.de/pub/Mirrors/fedora.redhat.com/linux/core/</A></li>

18 years, 1 month

1
0
0 / 0

web/html/Download/mirrors fedora-core-5, 1.7, 1.8 fedora-core-5-redirect, 1.5, 1.6 updates-released-fc5, 1.8, 1.9 updates-released-fc5-redirect, 1.5, 1.6 updates-testing-fc5, 1.8, 1.9 updates-testing-fc5-redirect, 1.5, 1.6

by Paul W. Frields (pfrields)

Author: eitch Update of /cvs/fedora/web/html/Download/mirrors In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv18336 Modified Files: fedora-core-5 fedora-core-5-redirect updates-released-fc5 updates-released-fc5-redirect updates-testing-fc5 updates-testing-fc5-redirect Log Message: corrected wrong links Index: fedora-core-5 =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/fedora-core-5,v retrieving revision 1.7 retrieving revision 1.8 diff -u -r1.7 -r1.8 --- fedora-core-5 22 Mar 2006 20:39:43 -0000 1.7 +++ fedora-core-5 29 Mar 2006 19:16:59 -0000 1.8 @@ -1,4 +1,4 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/5/$ARCH/os/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/5/$ARCH/os/ http://ftp.fi.muni.cz/pub/linux/fedora-core/5/$ARCH/os/ ftp://ftp.tu-chemnitz.de/pub/linux/fedora-core/5/$ARCH/os/ ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/5/$ARCH/os/ @@ -15,15 +15,15 @@ ftp://ftp.wicks.co.nz/pub/linux/dist/fedora/5/$ARCH/os/ ftp://ftp.rhd.ru/pub/fedora/linux/core/5/$ARCH/os/ http://ftp.rhd.ru/pub/fedora/linux/core/5/$ARCH/os/ -ftp://ftp.ipex.cz/pub/linux/fedora/5/$ARCH/os/ +ftp://ftp.ipex.cz/pub/linux/fedora/core/5/$ARCH/os/ http://fedora.cat.pdx.edu/linux/core/5/$ARCH/os/ http://fedora.ngi.it/5/$ARCH/os/ ftp://falkor.skane.se/pub/mirrors/fedora/core/5/$ARCH/os/ ftp://ftp.cica.es/fedora/linux/core/5/$ARCH/os/ ftp://ftp.free.fr/mirrors/fedora.redhat.com/fedora/linux/core/5/$ARCH/os/ http://ftp.ussg.iu.edu/linux/fedora/linux/core/5/$ARCH/os/ -http://ftp.surfnet.nl/ftp/pub/os/Linux/distr/fedora/$ARCH/os/ -http://ftp.nluug.nl/ftp/pub/os/Linux/distr/fedora/$ARCH/os/ +http://ftp.surfnet.nl/ftp/pub/os/Linux/distr/fedora/5/$ARCH/os/ +http://ftp.nluug.nl/ftp/pub/os/Linux/distr/fedora/5/$ARCH/os/ ftp://ftp.net.usf.edu/pub/fedora/linux/core/5/$ARCH/os/ http://www.muug.mb.ca/pub/fedora/linux/core/5/$ARCH/os/ http://mirror.eas.muohio.edu/fedora/linux/core/5/$ARCH/os/ Index: fedora-core-5-redirect =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/fedora-core-5-redirect,v retrieving revision 1.5 retrieving revision 1.6 diff -u -r1.5 -r1.6 --- fedora-core-5-redirect 21 Mar 2006 18:46:31 -0000 1.5 +++ fedora-core-5-redirect 29 Mar 2006 19:16:59 -0000 1.6 @@ -1,4 +1,4 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/5/$ARCH/os/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/5/$ARCH/os/ http://ftp.fi.muni.cz/pub/linux/fedora-core/5/$ARCH/os/ ftp://ftp.tu-chemnitz.de/pub/linux/fedora-core/5/$ARCH/os/ ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/5/$ARCH/os/ @@ -15,15 +15,15 @@ ftp://ftp.wicks.co.nz/pub/linux/dist/fedora/5/$ARCH/os/ ftp://ftp.rhd.ru/pub/fedora/linux/core/5/$ARCH/os/ http://ftp.rhd.ru/pub/fedora/linux/core/5/$ARCH/os/ -ftp://ftp.ipex.cz/pub/linux/fedora/5/$ARCH/os/ +ftp://ftp.ipex.cz/pub/linux/fedora/core/5/$ARCH/os/ http://fedora.cat.pdx.edu/linux/core/5/$ARCH/os/ http://fedora.ngi.it/5/$ARCH/os/ ftp://falkor.skane.se/pub/mirrors/fedora/core/5/$ARCH/os/ ftp://ftp.cica.es/fedora/linux/core/5/$ARCH/os/ ftp://ftp.free.fr/mirrors/fedora.redhat.com/fedora/linux/core/5/$ARCH/os/ http://ftp.ussg.iu.edu/linux/fedora/linux/core/5/$ARCH/os/ -http://ftp.surfnet.nl/ftp/pub/os/Linux/distr/fedora/$ARCH/os/ -http://ftp.nluug.nl/ftp/pub/os/Linux/distr/fedora/$ARCH/os/ +http://ftp.surfnet.nl/ftp/pub/os/Linux/distr/fedora/5/$ARCH/os/ +http://ftp.nluug.nl/ftp/pub/os/Linux/distr/fedora/5/$ARCH/os/ ftp://ftp.net.usf.edu/pub/fedora/linux/core/5/$ARCH/os/ http://www.muug.mb.ca/pub/fedora/linux/core/5/$ARCH/os/ http://mirror.eas.muohio.edu/fedora/linux/core/5/$ARCH/os/ Index: updates-released-fc5 =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/updates-released-fc5,v retrieving revision 1.8 retrieving revision 1.9 diff -u -r1.8 -r1.9 --- updates-released-fc5 22 Mar 2006 20:39:43 -0000 1.8 +++ updates-released-fc5 29 Mar 2006 19:16:59 -0000 1.9 @@ -1,16 +1,16 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/$ARCH/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/updates/5/$ARCH/ http://less.cogeco.net/pub/fedora/linux/core/updates/5/$ARCH/ -http://ftp.kddilabs.jp/Linux/packages/fedora/5/$ARCH/ +http://ftp.kddilabs.jp/Linux/packages/fedora/core/updates/5/$ARCH/ http://fedora.inode.at/updates/5/$ARCH/ http://mirrors.csumb.edu/fedora/updates/5/$ARCH/ http://ftp.upjs.sk/pub/fedora/linux/core/updates/5/$ARCH/ http://mirror.netglobalis.net/pub/fedora/updates/5/$ARCH/ http://ftp1.skynet.cz/pub/linux/fedora/updates/5/$ARCH/ -http://ftp.iij.ad.jp/pub/linux/fedora/updates/5/$ARCH/ +http://ftp.iij.ad.jp/pub/linux/fedora/core/updates/5/$ARCH/ http://mirrors.kernel.org/fedora/core/updates/5/$ARCH/ ftp://falkor.skane.se/pub/mirrors/fedora/updates/5/$ARCH/ ftp://ftp.quicknet.nl/pub/Linux/download.fedora.redhat.com/updates/5/$ARCH/ -ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/updates/5/$ARCH/ +ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/updates/5/$ARCH/ http://fedora.mirrors.lug.ro/fedora/linux/core/updates/5/$ARCH/ http://ftp.nara.wide.ad.jp/pub/Linux/fedora/core/updates/5/$ARCH/ http://ftp.chg.ru/pub/Linux/fedora/linux/core/updates/5/$ARCH/ Index: updates-released-fc5-redirect =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/updates-released-fc5-redirect,v retrieving revision 1.5 retrieving revision 1.6 diff -u -r1.5 -r1.6 --- updates-released-fc5-redirect 21 Mar 2006 18:46:31 -0000 1.5 +++ updates-released-fc5-redirect 29 Mar 2006 19:16:59 -0000 1.6 @@ -1,16 +1,16 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/$ARCH/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/updates/5/$ARCH/ http://less.cogeco.net/pub/fedora/linux/core/updates/5/$ARCH/ -http://ftp.kddilabs.jp/Linux/packages/fedora/5/$ARCH/ +http://ftp.kddilabs.jp/Linux/packages/fedora/core/updates/5/$ARCH/ http://fedora.inode.at/updates/5/$ARCH/ http://mirrors.csumb.edu/fedora/updates/5/$ARCH/ http://ftp.upjs.sk/pub/fedora/linux/core/updates/5/$ARCH/ http://mirror.netglobalis.net/pub/fedora/updates/5/$ARCH/ http://ftp1.skynet.cz/pub/linux/fedora/updates/5/$ARCH/ -http://ftp.iij.ad.jp/pub/linux/fedora/updates/5/$ARCH/ +http://ftp.iij.ad.jp/pub/linux/fedora/core/updates/5/$ARCH/ http://mirrors.kernel.org/fedora/core/updates/5/$ARCH/ ftp://falkor.skane.se/pub/mirrors/fedora/updates/5/$ARCH/ ftp://ftp.quicknet.nl/pub/Linux/download.fedora.redhat.com/updates/5/$ARCH/ -ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/updates/5/$ARCH/ +ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/updates/5/$ARCH/ http://fedora.mirrors.lug.ro/fedora/linux/core/updates/5/$ARCH/ http://ftp.nara.wide.ad.jp/pub/Linux/fedora/core/updates/5/$ARCH/ http://ftp.chg.ru/pub/Linux/fedora/linux/core/updates/5/$ARCH/ Index: updates-testing-fc5 =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/updates-testing-fc5,v retrieving revision 1.8 retrieving revision 1.9 diff -u -r1.8 -r1.9 --- updates-testing-fc5 22 Mar 2006 20:39:43 -0000 1.8 +++ updates-testing-fc5 29 Mar 2006 19:16:59 -0000 1.9 @@ -1,17 +1,17 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/5/$ARCH/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/updates/testing/5/$ARCH/ http://less.cogeco.net/pub/fedora/linux/core/updates/testing/5/$ARCH/ -http://ftp.kddilabs.jp/Linux/packages/fedora/testing/5/$ARCH/ +http://ftp.kddilabs.jp/Linux/packages/fedora/core/updates/testing/5/$ARCH/ http://fedora.inode.at/updates/testing/5/$ARCH/ http://mirrors.csumb.edu/fedora/updates/testing/5/$ARCH/ http://ftp.upjs.sk/pub/fedora/linux/core/updates/testing/5/$ARCH/ http://mirror.netglobalis.net/pub/fedora/updates/testing/5/$ARCH/ http://ftp1.skynet.cz/pub/linux/fedora/updates/testing/5/$ARCH/ -http://ftp.iij.ad.jp/pub/linux/fedora/updates/testing/5/$ARCH/ +http://ftp.iij.ad.jp/pub/linux/fedora/core/updates/testing/5/$ARCH/ http://mirrors.kernel.org/fedora/core/updates/testing/5/$ARCH/ ftp://mirrors.kernel.org/fedora/core/updates/testing/5/$ARCH/ ftp://falkor.skane.se/pub/mirrors/fedora/updates/testing/5/$ARCH/ ftp://ftp.quicknet.nl/pub/Linux/download.fedora.redhat.com/updates/testin... -ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/updates/testing/5/$ARCH/ +ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/updates/testing/5 http://fedora.mirrors.lug.ro/fedora/linux/core/updates/testing/5/$ARCH/ http://ftp.nara.wide.ad.jp/pub/Linux/fedora/core/updates/testing/5/$ARCH/ http://ftp.chg.ru/pub/Linux/fedora/linux/core/updates/testing/5/$ARCH/ Index: updates-testing-fc5-redirect =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors/updates-testing-fc5-redirect,v retrieving revision 1.5 retrieving revision 1.6 diff -u -r1.5 -r1.6 --- updates-testing-fc5-redirect 21 Mar 2006 18:46:31 -0000 1.5 +++ updates-testing-fc5-redirect 29 Mar 2006 19:16:59 -0000 1.6 @@ -1,17 +1,17 @@ -http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/5/$ARCH/ +http://redhat.download.fedoraproject.org/pub/fedora/linux/core/updates/testing/5/$ARCH/ http://less.cogeco.net/pub/fedora/linux/core/updates/testing/5/$ARCH/ -http://ftp.kddilabs.jp/Linux/packages/fedora/testing/5/$ARCH/ +http://ftp.kddilabs.jp/Linux/packages/fedora/core/updates/testing/5/$ARCH/ http://fedora.inode.at/updates/testing/5/$ARCH/ http://mirrors.csumb.edu/fedora/updates/testing/5/$ARCH/ http://ftp.upjs.sk/pub/fedora/linux/core/updates/testing/5/$ARCH/ http://mirror.netglobalis.net/pub/fedora/updates/testing/5/$ARCH/ http://ftp1.skynet.cz/pub/linux/fedora/updates/testing/5/$ARCH/ -http://ftp.iij.ad.jp/pub/linux/fedora/updates/testing/5/$ARCH/ +http://ftp.iij.ad.jp/pub/linux/fedora/core/updates/testing/5/$ARCH/ http://mirrors.kernel.org/fedora/core/updates/testing/5/$ARCH/ ftp://mirrors.kernel.org/fedora/core/updates/testing/5/$ARCH/ ftp://falkor.skane.se/pub/mirrors/fedora/updates/testing/5/$ARCH/ ftp://ftp.quicknet.nl/pub/Linux/download.fedora.redhat.com/updates/testin... -ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/updates/testing/5/$ARCH/ +ftp://ftp.wsisiz.edu.pl/pub/linux/fedora/linux/core/updates/testing/5 http://fedora.mirrors.lug.ro/fedora/linux/core/updates/testing/5/$ARCH/ http://ftp.nara.wide.ad.jp/pub/Linux/fedora/core/updates/testing/5/$ARCH/ http://ftp.chg.ru/pub/Linux/fedora/linux/core/updates/testing/5/$ARCH/

18 years, 1 month

1
0
0 / 0

Volunteer to manage mirror lists

by Jesse Keating

We have mirror list files on download.fedora.redhat.com. Yum uses these and now the redirector on download.fedoraproject.org uses these as well. I'd like to find somebody who is willing to manage these files, possibly get some segregation by geography and generally make sure they are kept up to date as more mirrors announce themselves. It is especially important around release time as mirrors get ready to take the load and many new installs come online. If you're interested, please contact me. I'm not a member of this list so either email me directly or reply-all if you wish to discuss in public fashion. -- Jesse Keating Release Engineer: Fedora

18 years, 1 month

4
3
0 / 0

web/html/Download mirrors.php,1.7,1.8

by Paul W. Frields (pfrields)

Author: trobert Update of /cvs/fedora/web/html/Download In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv22808 Modified Files: mirrors.php Log Message: Removed mirror fedora.cs.utah.edu per rt # 186462 (the ftp.sunet.se addition was rt # 186636) Index: mirrors.php =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors.php,v retrieving revision 1.7 retrieving revision 1.8 diff -u -r1.7 -r1.8 --- mirrors.php 24 Mar 2006 20:38:15 -0000 1.7 +++ mirrors.php 24 Mar 2006 20:40:26 -0000 1.8 @@ -100,7 +100,6 @@ <li><A HREF="http://mirror.web-ster.com/fedora/core/">http://mirror.web-ster.com/fedora/core/</A></li> <li><A HREF="ftp://mirror.web-ster.com/fedora/core/">ftp://mirror.web-ster.com/fedora/core/</A></li> <li>rsync://mirror.web-ster.com/fedora/core/</li> - <li><A HREF="ftp://fedora.cs.utah.edu/pub/fedora/linux/core/">ftp://fedora.cs.utah.edu/pub/fedora/linux/core/</A></li> <li><A HREF="http://fedora.cat.pdx.edu/linux/core/">http://fedora.cat.pdx.edu/linux/core/</A></li> <li><A HREF="ftp://fedora.cat.pdx.edu/linux/core/">ftp://fedora.cat.pdx.edu/linux/core/</A></li> <li>rsync://fedora.cat.pdx.edu/</li>

18 years, 1 month

1
0
0 / 0

web/html/Download mirrors.php,1.6,1.7

by Paul W. Frields (pfrields)

Author: trobert Update of /cvs/fedora/web/html/Download In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv22732 Modified Files: mirrors.php Log Message: Added ftp.sunet.se mirrors per rt # 1866462 Index: mirrors.php =================================================================== RCS file: /cvs/fedora/web/html/Download/mirrors.php,v retrieving revision 1.6 retrieving revision 1.7 diff -u -r1.6 -r1.7 --- mirrors.php 20 Mar 2006 20:44:34 -0000 1.6 +++ mirrors.php 24 Mar 2006 20:38:15 -0000 1.7 @@ -425,6 +425,8 @@ <li><A HREF="ftp://falkor.skane.se/pub/mirrors/fedora/">ftp://falkor.skane.se/pub/mirrors/fedora/</A></li> <li><A HREF="http://ftp.port80.se/fedora/core/">http://ftp.port80.se/fedora/core/</A></li> <li><A HREF="ftp://ftp.port80.se/fedora/core/">ftp://ftp.port80.se/fedora/core/</A></li> + <li><A HREF="http://ftp.sunet.se/pub/Linux/distributions/fedora/">http://ftp.sunet.se/pub/Linux/distributions/fedora/</A></li> + <li><A HREF="ftp://ftp.sunet.se/pub/Linux/distributions/fedora/">ftp://ftp.sunet.se/pub/Linux/distributions/fedora/</A></li> </ul> <li>Switzerland <ul>

18 years, 1 month

1
0
0 / 0

web/html/docs/selinux-faq-fc5 index.php,1.1,1.2

by Paul W. Frields (pfrields)

Author: kwade Update of /cvs/fedora/web/html/docs/selinux-faq-fc5 In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv20309 Modified Files: index.php Log Message: Updating to match content in CVS, this updates log file locations and addes targeted domains. Index: index.php =================================================================== RCS file: /cvs/fedora/web/html/docs/selinux-faq-fc5/index.php,v retrieving revision 1.1 retrieving revision 1.2 diff -u -r1.1 -r1.2 --- index.php 23 Mar 2006 21:39:56 -0000 1.1 +++ index.php 24 Mar 2006 19:30:00 -0000 1.2 @@ -52,6 +52,17 @@ <div><div class="revhistory"><table border="1" width="100%" summary="Revision history"> <tr><th align="left" valign="top" colspan="3">Revision History</th></tr> <tr> +<td align="left">Revision 1.5.4</td> +<td align="left">2006-03-21</td> +<td align="left">CS</td> +</tr> +<tr><td align="left" colspan="3"> + + Updated log file location for FC5 release, added targeted + domains FAQ + + </td></tr> +<tr> <td align="left">Revision 1.5.3</td> <td align="left">2006-03-21</td> <td align="left">CS</td> @@ -189,11 +200,11 @@ <dt>1.1. <a href="#faq-div-understanding-selinux">Understanding SELinux</a> </dt> <dd><dl> -<dt>Q: <a href="#id2729807"> +<dt>Q: <a href="#id2730692"> What is SELinux? </a> </dt> -<dt>Q: <a href="#id2731256"> +<dt>Q: <a href="#id2732137"> What is SELinux policy? </a> </dt> @@ -201,11 +212,15 @@ What is the SELinux targeted policy? </a> </dt> -<dt>Q: <a href="#id2731514"> +<dt>Q: <a href="#id2732394"> + What programs are protected by the targeted policy? + </a> +</dt> +<dt>Q: <a href="#id2745278"> What about the strict policy? Does it even work? </a> </dt> -<dt>Q: <a href="#id2728705"> +<dt>Q: <a href="#id2745344"> What is the mls policy? Who is it for? </a> </dt> @@ -213,15 +228,15 @@ What is the Reference Policy? </a> </dt> -<dt>Q: <a href="#id2728838"> +<dt>Q: <a href="#id2745437"> What are file contexts? </a> </dt> -<dt>Q: <a href="#id2744128"> +<dt>Q: <a href="#id2745502"> How do I view the security context of a file, user, or process? </a> </dt> -<dt>Q: <a href="#id2744165"> +<dt>Q: <a href="#id2745540"> What is the difference between a domain and a type? </a> @@ -238,19 +253,19 @@ <dt>1.2. <a href="#faq-div-controlling-selinux">Controlling SELinux</a> </dt> <dd><dl> -<dt>Q: <a href="#id2744339"> +<dt>Q: <a href="#id2783681"> How do I install/not install SELinux? </a> </dt> -<dt>Q: <a href="#id2744365"> +<dt>Q: <a href="#id2783707"> How do I switch the policy I am currently using? </a> </dt> -<dt>Q: <a href="#id2744595"> +<dt>Q: <a href="#id2783924"> How can I back up files from an SELinux file system? </a> </dt> -<dt>Q: <a href="#id2744700"> +<dt>Q: <a href="#id2784024"> How can I install the strict policy by default with kickstart? </a> </dt> @@ -259,48 +274,48 @@ the targeted policy? </a> </dt> -<dt>Q: <a href="#id2782795"> +<dt>Q: <a href="#id2784146"> How do I make a user public_html directory work under SELinux? </a> </dt> -<dt>Q: <a href="#id2783007"> +<dt>Q: <a href="#id2784358"> How do I turn SELinux off at boot? </a> </dt> -<dt>Q: <a href="#id2783067"> +<dt>Q: <a href="#id2784418"> How do I turn enforcing on/off at boot? </a> </dt> -<dt>Q: <a href="#id2783186"> +<dt>Q: <a href="#id2784537"> How do I temporarily turn off enforcing mode without having to reboot? </a> </dt> -<dt>Q: <a href="#id2783253"> +<dt>Q: <a href="#id2784604"> How do I turn system call auditing on/off at boot? </a> </dt> -<dt>Q: <a href="#id2783296"> +<dt>Q: <a href="#id2784647"> How do I temporarily turn off system-call auditing without having to reboot? </a> </dt> -<dt>Q: <a href="#id2783321"> +<dt>Q: <a href="#id2784672"> How do I get status info about my SELinux installation? </a> </dt> -<dt>Q: <a href="#id2783352"> +<dt>Q: <a href="#id2784703"> How do I write policy to allow a domain to use pam_unix.so? </a> </dt> -<dt>Q: <a href="#id2783443"> +<dt>Q: <a href="#id2784794"> In the past I have written local.te file in policy sources for my own local customization to policy, how do I do this with Reference Policy? </a> </dt> -<dt>Q: <a href="#id2783608"> +<dt>Q: <a href="#id2784972"> I created a new Policy Package where do I put it to make sure that it gets loaded into the kernel? </a> @@ -309,160 +324,166 @@ <dt>1.3. <a href="#faq-div-resolving-problems">Resolving Problems</a> </dt> <dd><dl> -<dt>Q: <a href="#id2783674"> +<dt>Q: <a href="#id2785038"> My application isn't working as expected and I am seeing avc: denied messages. How do I fix this? </a> </dt> -<dt>Q: <a href="#id2783770"> +<dt>Q: <a href="#id2785134"> I installed Fedora Core on a system with an existing /home partition, and now I can't log in. </a> </dt> -<dt>Q: <a href="#id2783867"> +<dt>Q: <a href="#id2785231"> After relabeling my /home using setfiles or fixfiles, will I still be able to read /home with a non-SELinux-enabled system? </a> </dt> -<dt>Q: <a href="#id2783924"> +<dt>Q: <a href="#id2785289"> How do I share directories using NFS between Fedora Core and non-SELinux systems? </a> </dt> -<dt>Q: <a href="#id2783992"> +<dt>Q: <a href="#id2785356"> How can I create a new Linux user account with the user's home directory having the proper context? </a> </dt> -<dt>Q: <a href="#id2784110"> +<dt>Q: <a href="#id2785474"> I'm having troubles with avc errors filling my logs for a particular program. How do I choose not to audit the access for it? </a> </dt> -<dt>Q: <a href="#id2784195"> +<dt>Q: <a href="#id2785559"> Even running in permissive mode, I'm getting a large number of avc denied messages. </a> </dt> -<dt>Q: <a href="#id2784237"> +<dt>Q: <a href="#id2785601"> I get a specific permission denial only when SELinux is in enforcing mode, but I don't see any audit messages in - /var/log/audit/audit.log. How can I identify the + /var/log/messages (or + /var/log/audit/audit.log if using the audit + daemon). How can I identify the cause of these silent denials? </a> </dt> -<dt>Q: <a href="#id2784355"> +<dt>Q: <a href="#id2785724"> Why do I not see the output when I run certain daemons in debug or interactive mode? </a> </dt> -<dt>Q: <a href="#id2784452"> +<dt>Q: <a href="#id2785822"> When I do an upgrade of the policy package (for example, using yum), what happens with the policy? Is it updated automatically? </a> </dt> -<dt>Q: <a href="#id2784550"> +<dt>Q: <a href="#id2785920"> If the policy shipping with an application package changes in a way that requires relabeling, will RPM handle relabeling the files owned by the package? </a> </dt> -<dt>Q: <a href="#id2784633"> +<dt>Q: <a href="#id2786002"> Why do binary policies distributed with Fedora, such as /etc/selinux/<policyname>/policy/policy.<version>, and those I compile myself have different sizes and MD5 checksums? </a> </dt> -<dt>Q: <a href="#id2784696"> +<dt>Q: <a href="#id2786066"> Will new policy packages disable my system? </a> </dt> -<dt>Q: <a href="#id2784732"> +<dt>Q: <a href="#id2786102"> How can I help write policy? </a> </dt> -<dt>Q: <a href="#id2785039"> +<dt>Q: <a href="#id2786409"> My console is being flooded with messages. How do I turn them off? </a> </dt> -<dt>Q: <a href="#id2785069"> +<dt>Q: <a href="#id2786440"> Can I test the default policy without installing the policy source? </a> </dt> -<dt>Q: <a href="#id2785167"> +<dt>Q: <a href="#id2786537"> Why are some of my KDE applications having trouble under SELinux? </a> </dt> -<dt>Q: <a href="#id2785242"> +<dt>Q: <a href="#id2786613"> Why does SELINUX=disabled not work for me? </a> </dt> -<dt>Q: <a href="#id2785270"> +<dt>Q: <a href="#id2786640"> I have a process running as unconfined_t, and SELinux is still preventing my application from running. </a> </dt> -<dt>Q: <a href="#id2785409"> +<dt>Q: <a href="#id2786780"> What do these rpm errors mean? </a> </dt> -<dt>Q: <a href="#id2785485"> +<dt>Q: <a href="#id2729318"> I want to run a daemon on a non standard port but SELinux will not allow me. How do get this to work? </a> </dt> -<dt>Q: <a href="#id2785522"> +<dt>Q: <a href="#id2729356"> How do I add additional translations to my MCS/MLS system? </a> </dt> -<dt>Q: <a href="#id2785580"> +<dt>Q: <a href="#id2787091"> I have setup my MCS/MLS translations, now I want to designate which users can read a given category? </a> </dt> -<dt>Q: <a href="#id2785634"> +<dt>Q: <a href="#id2787145"> I am writing an php script that needs to create temporary files in /tmp and then execute them, SELinux policy is preventing this. What should I do? </a> </dt> -<dt>Q: <a href="#id2785680"> +<dt>Q: <a href="#id2787191"> I am setting up swapping to a file, but I am seeing AVC messages in my log files? </a> </dt> -<dt>Q: <a href="#id2785717"> +<dt>Q: <a href="#id2787228"> Please explain the relabelto/relabelfrom permissions? </a> </dt> +<dt>Q: <a href="#id2787324"> + Where are SELinux AVC messages (denial logs, etc.) stored? + </a> +</dt> </dl></dd> <dt>1.4. <a href="#faq-div-deploying-selinux">Deploying SELinux</a> </dt> <dd><dl> -<dt>Q: <a href="#id2785821"> +<dt>Q: <a href="#id2787378"> What file systems can I use for SELinux? </a> </dt> -<dt>Q: <a href="#id2785855"> +<dt>Q: <a href="#id2787412"> How does SELinux impact system performance? </a> </dt> -<dt>Q: <a href="#id2785886"> +<dt>Q: <a href="#id2787443"> What types of deployments, applications, and systems should I leverage SELinux in? </a> </dt> -<dt>Q: <a href="#id2785955"> +<dt>Q: <a href="#id2787512"> How does SELinux affect third-party applications? </a> </dt> @@ -476,11 +497,11 @@ <a name="faq-div-understanding-selinux"></a>1.1. Understanding SELinux</h4> </td></tr> <tr class="toc" colspan="2"><td align="left" valign="top" colspan="2"><dl> -<dt>Q: <a href="#id2729807"> +<dt>Q: <a href="#id2730692"> What is SELinux? </a> </dt> -<dt>Q: <a href="#id2731256"> +<dt>Q: <a href="#id2732137"> What is SELinux policy? </a> </dt> @@ -488,11 +509,15 @@ What is the SELinux targeted policy? </a> </dt> -<dt>Q: <a href="#id2731514"> +<dt>Q: <a href="#id2732394"> + What programs are protected by the targeted policy? + </a> +</dt> +<dt>Q: <a href="#id2745278"> What about the strict policy? Does it even work? </a> </dt> -<dt>Q: <a href="#id2728705"> +<dt>Q: <a href="#id2745344"> What is the mls policy? Who is it for? </a> </dt> @@ -500,15 +525,15 @@ What is the Reference Policy? </a> </dt> -<dt>Q: <a href="#id2728838"> +<dt>Q: <a href="#id2745437"> What are file contexts? </a> </dt> -<dt>Q: <a href="#id2744128"> +<dt>Q: <a href="#id2745502"> How do I view the security context of a file, user, or process? </a> </dt> -<dt>Q: <a href="#id2744165"> +<dt>Q: <a href="#id2745540"> What is the difference between a domain and a type? </a> @@ -524,7 +549,7 @@ </dl></td></tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2729807"></a><a name="id2729809"></a>Q: +<a name="id2730692"></a><a name="id2730694"></a>Q: </td> <td align="left" valign="top"> What is SELinux? @@ -603,7 +628,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2731256"></a><a name="qa-whatis-policy"></a>Q: +<a name="id2732137"></a><a name="qa-whatis-policy"></a>Q: </td> <td align="left" valign="top"> What is SELinux policy? @@ -654,7 +679,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="qa-whatis-targeted-policy"></a><a name="id2731408"></a>Q: +<a name="qa-whatis-targeted-policy"></a><a name="id2732292"></a>Q: </td> <td align="left" valign="top"> What is the SELinux targeted policy? @@ -709,7 +734,107 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2731514"></a><a name="id2731516"></a>Q: +<a name="id2732394"></a><a name="id2732396"></a>Q: +</td> +<td align="left" valign="top"> + What programs are protected by the targeted policy? + </td> +</tr> +<tr class="answer"> +<td align="left" valign="top">A:</td> +<td align="left" valign="top"> + + Currently, the list of programs is approximately: + + + <code class="filename">accton</code>, + <code class="filename">amanda</code>, + <code class="filename">httpd</code> (apache), + <code class="filename">arpwatch</code>, + <code class="filename">pam</code>, + <code class="filename">automount</code>, + <code class="filename">avahi</code>, + <code class="filename">named</code>, + <code class="filename">bluez</code>, + <code class="filename">lilo</code>, + <code class="filename">grub</code>, + <code class="filename">canna</code>, + <code class="filename">comsat</code>, + <code class="filename">cpucontrol</code>, + <code class="filename">cpuspeed</code>, + <code class="filename">cups</code>, + <code class="filename">cvs</code>, + <code class="filename">cyrus</code>, + <code class="filename">dbskkd</code>, + <code class="filename">dbus</code>, + <code class="filename">dhcpd</code>, + <code class="filename">dictd</code>, + <code class="filename">dmidecode</code>, + <code class="filename">dovecot</code>, + <code class="filename">fetchmail</code>, + <code class="filename">fingerd</code>, + <code class="filename">ftpd</code> (vsftpd, proftpd, and muddleftpd), + <code class="filename">gpm</code>, + <code class="filename">hald</code>, + <code class="filename">hotplug</code>, + <code class="filename">howl</code>, + <code class="filename">innd</code>, + <code class="filename">kerberos</code>, + <code class="filename">ktalkd</code>, + <code class="filename">openldap</code>, + <code class="filename">auditd</code>, + <code class="filename">syslog</code>, + <code class="filename">logwatch</code>, + <code class="filename">lpd</code>, + <code class="filename">lvm</code>, + <code class="filename">mailman</code>, + <code class="filename">module-init-tools</code>, + <code class="filename">mount</code>, + <code class="filename">mysql</code>, + <code class="filename">NetworkManager</code>, + <code class="filename">NIS</code>, + <code class="filename">nscd</code>, + <code class="filename">ntp</code>, + <code class="filename">pegasus</code>, + <code class="filename">portmap</code>, + <code class="filename">postfix</code>, + <code class="filename">postgresql</code>, + <code class="filename">pppd</code>, + <code class="filename">pptp</code>, + <code class="filename">privoxy</code>, + <code class="filename">procmail</code>, + <code class="filename">radiusd</code>, + <code class="filename">radvd</code>, + <code class="filename">rlogin</code>, + <code class="filename">nfs</code>, + <code class="filename">rsync</code>, + <code class="filename">samba</code>, + <code class="filename">saslauthd</code>, + <code class="filename">snmpd</code>, + <code class="filename">spamd</code>, + <code class="filename">squid</code>, + <code class="filename">stunnel</code>, + <code class="filename">dhcpc</code>, + <code class="filename">ifconfig</code>, + <code class="filename">sysstat</code>, + <code class="filename">tcp wrappers</code>, + <code class="filename">telnetd</code>, + <code class="filename">tftpd</code>, + <code class="filename">updfstab</code>, + <code class="filename">user management</code> (passwd, useradd, etc.), + <code class="filename">crack</code>, + <code class="filename">uucpd</code>, + <code class="filename">vpnc</code>, + <code class="filename">webalizer</code>, + <code class="filename">xend</code>, + <code class="filename">xfs</code>, + <code class="filename">zebra</code> + +</td> +</tr> +<tr class="question"> +<td align="left" valign="top"> +<a name="id2745278"></a><a name="id2745280"></a>Q: </td> <td align="left" valign="top"> What about the strict policy? Does it even work? @@ -739,7 +864,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2728705"></a><a name="id2728707"></a>Q: +<a name="id2745344"></a><a name="id2745346"></a>Q: </td> <td align="left" valign="top"> What is the mls policy? Who is it for? @@ -766,7 +891,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="faq-entry-whatis-refpolicy"></a><a name="id2728788"></a>Q: +<a name="faq-entry-whatis-refpolicy"></a><a name="id2745387"></a>Q: </td> <td align="left" valign="top"> What is the Reference Policy? @@ -802,7 +927,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2728838"></a><a name="id2728840"></a>Q: +<a name="id2745437"></a><a name="id2745439"></a>Q: </td> <td align="left" valign="top"> What are file contexts? @@ -829,7 +954,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744128"></a><a name="id2744130"></a>Q: +<a name="id2745502"></a><a name="id2745504"></a>Q: </td> <td align="left" valign="top"> How do I view the security context of a file, user, or process? @@ -851,7 +976,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744165"></a><a name="id2744167"></a>Q: +<a name="id2745540"></a><a name="id2745542"></a>Q: </td> <td align="left" valign="top"> What is the difference between a domain and @@ -869,7 +994,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="faq-entry-whatare-policy-modules"></a><a name="id2744202"></a>Q: +<a name="faq-entry-whatare-policy-modules"></a><a name="id2745578"></a>Q: </td> <td align="left" valign="top"> What are policy modules? @@ -910,7 +1035,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="faq-entry-whatis-managed-policy"></a><a name="id2744276"></a>Q: +<a name="faq-entry-whatis-managed-policy"></a><a name="id2745651"></a>Q: </td> <td align="left" valign="top"> What is managed policy? @@ -945,19 +1070,19 @@ <a name="faq-div-controlling-selinux"></a>1.2. Controlling SELinux</h4> </td></tr> <tr class="toc" colspan="2"><td align="left" valign="top" colspan="2"><dl> -<dt>Q: <a href="#id2744339"> +<dt>Q: <a href="#id2783681"> How do I install/not install SELinux? </a> </dt> -<dt>Q: <a href="#id2744365"> +<dt>Q: <a href="#id2783707"> How do I switch the policy I am currently using? </a> </dt> -<dt>Q: <a href="#id2744595"> +<dt>Q: <a href="#id2783924"> How can I back up files from an SELinux file system? </a> </dt> -<dt>Q: <a href="#id2744700"> +<dt>Q: <a href="#id2784024"> How can I install the strict policy by default with kickstart? </a> </dt> @@ -966,48 +1091,48 @@ the targeted policy? </a> </dt> -<dt>Q: <a href="#id2782795"> +<dt>Q: <a href="#id2784146"> How do I make a user public_html directory work under SELinux? </a> </dt> -<dt>Q: <a href="#id2783007"> +<dt>Q: <a href="#id2784358"> How do I turn SELinux off at boot? </a> </dt> -<dt>Q: <a href="#id2783067"> +<dt>Q: <a href="#id2784418"> How do I turn enforcing on/off at boot? </a> </dt> -<dt>Q: <a href="#id2783186"> +<dt>Q: <a href="#id2784537"> How do I temporarily turn off enforcing mode without having to reboot? </a> </dt> -<dt>Q: <a href="#id2783253"> +<dt>Q: <a href="#id2784604"> How do I turn system call auditing on/off at boot? </a> </dt> -<dt>Q: <a href="#id2783296"> +<dt>Q: <a href="#id2784647"> How do I temporarily turn off system-call auditing without having to reboot? </a> </dt> -<dt>Q: <a href="#id2783321"> +<dt>Q: <a href="#id2784672"> How do I get status info about my SELinux installation? </a> </dt> -<dt>Q: <a href="#id2783352"> +<dt>Q: <a href="#id2784703"> How do I write policy to allow a domain to use pam_unix.so? </a> </dt> -<dt>Q: <a href="#id2783443"> +<dt>Q: <a href="#id2784794"> In the past I have written local.te file in policy sources for my own local customization to policy, how do I do this with Reference Policy? </a> </dt> -<dt>Q: <a href="#id2783608"> +<dt>Q: <a href="#id2784972"> I created a new Policy Package where do I put it to make sure that it gets loaded into the kernel? </a> @@ -1015,7 +1140,7 @@ </dl></td></tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744339"></a><a name="id2744342"></a>Q: +<a name="id2783681"></a><a name="id2783683"></a>Q: </td> <td align="left" valign="top"> How do I install/not install SELinux? @@ -1031,7 +1156,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744365"></a><a name="id2744367"></a>Q: +<a name="id2783707"></a><a name="id2783709"></a>Q: </td> <td align="left" valign="top"> How do I switch the policy I am currently using? @@ -1123,7 +1248,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744595"></a><a name="id2744597"></a>Q: +<a name="id2783924"></a><a name="id2783926"></a>Q: </td> <td align="left" valign="top"> How can I back up files from an SELinux file system? @@ -1170,7 +1295,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2744700"></a><a name="id2744702"></a>Q: +<a name="id2784024"></a><a name="id2784026"></a>Q: </td> <td align="left" valign="top"> How can I install the strict policy by default with kickstart? @@ -1197,7 +1322,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="qa-using-s-c-securitylevel"></a><a name="id2744774"></a>Q: +<a name="qa-using-s-c-securitylevel"></a><a name="id2784095"></a>Q: </td> <td align="left" valign="top"> How do I enable/disable SELinux protection on specific daemons under @@ -1221,7 +1346,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2782795"></a><a name="id2782797"></a>Q: +<a name="id2784146"></a><a name="id2784148"></a>Q: </td> <td align="left" valign="top"> How do I make a user <code class="filename">public_html</code> directory @@ -1297,7 +1422,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783007"></a><a name="id2783011"></a>Q: +<a name="id2784358"></a><a name="id2784361"></a>Q: </td> <td align="left" valign="top"> How do I turn SELinux off at boot? @@ -1333,7 +1458,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783067"></a><a name="id2783069"></a>Q: +<a name="id2784418"></a><a name="id2784420"></a>Q: </td> <td align="left" valign="top"> How do I turn enforcing on/off at boot? @@ -1387,7 +1512,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783186"></a><a name="id2783188"></a>Q: +<a name="id2784537"></a><a name="id2784539"></a>Q: </td> <td align="left" valign="top"> How do I temporarily turn off enforcing mode without having to @@ -1423,7 +1548,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783253"></a><a name="id2783255"></a>Q: +<a name="id2784604"></a><a name="id2784606"></a>Q: </td> <td align="left" valign="top"> How do I turn system call auditing on/off at boot? @@ -1448,7 +1573,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783296"></a><a name="id2783298"></a>Q: +<a name="id2784647"></a><a name="id2784649"></a>Q: </td> <td align="left" valign="top"> How do I temporarily turn off system-call auditing without having @@ -1464,7 +1589,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783321"></a><a name="id2783323"></a>Q: +<a name="id2784672"></a><a name="id2784674"></a>Q: </td> <td align="left" valign="top"> How do I get status info about my SELinux installation? @@ -1480,7 +1605,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783352"></a><a name="id2783354"></a>Q: +<a name="id2784703"></a><a name="id2784705"></a>Q: </td> <td align="left" valign="top"> How do I write policy to allow a domain to use pam_unix.so? @@ -1522,7 +1647,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783443"></a><a name="id2783446"></a>Q: +<a name="id2784794"></a><a name="id2784797"></a>Q: </td> <td align="left" valign="top"> In the past I have written local.te file in policy sources for my @@ -1550,7 +1675,7 @@ additional customizations. <pre class="screen"> -<code class="computeroutput">audit2allow -M local -l -i /var/log/audit/audit.log +<code class="computeroutput">audit2allow -M local -l -i /var/log/messages Generating type enforcment file: local.te Compiling policy checkmodule -M -m -o local.mod local.te @@ -1564,6 +1689,10 @@ semodule -i local.pp</code> </pre> + Note that the above assumes you are not using the audit daemon. + If you were using the audit daemon, then you should use + <code class="filename">/var/log/audit/audit.log</code> instead of + <code class="filename">/var/log/messages</code> as your log file. This will generate a <code class="filename">local.te</code> file, that looks something like the following: @@ -1609,7 +1738,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783608"></a><a name="id2783610"></a>Q: +<a name="id2784972"></a><a name="id2784974"></a>Q: </td> <td align="left" valign="top"> I created a new Policy Package where do I put it to make sure that @@ -1646,146 +1775,152 @@ <a name="faq-div-resolving-problems"></a>1.3. Resolving Problems</h4> </td></tr> <tr class="toc" colspan="2"><td align="left" valign="top" colspan="2"><dl> -<dt>Q: <a href="#id2783674"> +<dt>Q: <a href="#id2785038"> My application isn't working as expected and I am seeing avc: denied messages. How do I fix this? </a> </dt> -<dt>Q: <a href="#id2783770"> +<dt>Q: <a href="#id2785134"> I installed Fedora Core on a system with an existing /home partition, and now I can't log in. </a> </dt> -<dt>Q: <a href="#id2783867"> +<dt>Q: <a href="#id2785231"> After relabeling my /home using setfiles or fixfiles, will I still be able to read /home with a non-SELinux-enabled system? </a> </dt> -<dt>Q: <a href="#id2783924"> +<dt>Q: <a href="#id2785289"> How do I share directories using NFS between Fedora Core and non-SELinux systems? </a> </dt> -<dt>Q: <a href="#id2783992"> +<dt>Q: <a href="#id2785356"> How can I create a new Linux user account with the user's home directory having the proper context? </a> </dt> -<dt>Q: <a href="#id2784110"> +<dt>Q: <a href="#id2785474"> I'm having troubles with avc errors filling my logs for a particular program. How do I choose not to audit the access for it? </a> </dt> -<dt>Q: <a href="#id2784195"> +<dt>Q: <a href="#id2785559"> Even running in permissive mode, I'm getting a large number of avc denied messages. </a> </dt> -<dt>Q: <a href="#id2784237"> +<dt>Q: <a href="#id2785601"> I get a specific permission denial only when SELinux is in enforcing mode, but I don't see any audit messages in - /var/log/audit/audit.log. How can I identify the + /var/log/messages (or + /var/log/audit/audit.log if using the audit + daemon). How can I identify the cause of these silent denials? </a> </dt> -<dt>Q: <a href="#id2784355"> +<dt>Q: <a href="#id2785724"> Why do I not see the output when I run certain daemons in debug or interactive mode? </a> </dt> -<dt>Q: <a href="#id2784452"> +<dt>Q: <a href="#id2785822"> When I do an upgrade of the policy package (for example, using yum), what happens with the policy? Is it updated automatically? </a> </dt> -<dt>Q: <a href="#id2784550"> +<dt>Q: <a href="#id2785920"> If the policy shipping with an application package changes in a way that requires relabeling, will RPM handle relabeling the files owned by the package? </a> </dt> -<dt>Q: <a href="#id2784633"> +<dt>Q: <a href="#id2786002"> Why do binary policies distributed with Fedora, such as /etc/selinux/<policyname>/policy/policy.<version>, and those I compile myself have different sizes and MD5 checksums? </a> </dt> -<dt>Q: <a href="#id2784696"> +<dt>Q: <a href="#id2786066"> Will new policy packages disable my system? </a> </dt> -<dt>Q: <a href="#id2784732"> +<dt>Q: <a href="#id2786102"> How can I help write policy? </a> </dt> -<dt>Q: <a href="#id2785039"> +<dt>Q: <a href="#id2786409"> My console is being flooded with messages. How do I turn them off? </a> </dt> -<dt>Q: <a href="#id2785069"> +<dt>Q: <a href="#id2786440"> Can I test the default policy without installing the policy source? </a> </dt> -<dt>Q: <a href="#id2785167"> +<dt>Q: <a href="#id2786537"> Why are some of my KDE applications having trouble under SELinux? </a> </dt> -<dt>Q: <a href="#id2785242"> +<dt>Q: <a href="#id2786613"> Why does SELINUX=disabled not work for me? </a> </dt> -<dt>Q: <a href="#id2785270"> +<dt>Q: <a href="#id2786640"> I have a process running as unconfined_t, and SELinux is still preventing my application from running. </a> </dt> -<dt>Q: <a href="#id2785409"> +<dt>Q: <a href="#id2786780"> What do these rpm errors mean? </a> </dt> -<dt>Q: <a href="#id2785485"> +<dt>Q: <a href="#id2729318"> I want to run a daemon on a non standard port but SELinux will not allow me. How do get this to work? </a> </dt> -<dt>Q: <a href="#id2785522"> +<dt>Q: <a href="#id2729356"> How do I add additional translations to my MCS/MLS system? </a> </dt> -<dt>Q: <a href="#id2785580"> +<dt>Q: <a href="#id2787091"> I have setup my MCS/MLS translations, now I want to designate which users can read a given category? </a> </dt> -<dt>Q: <a href="#id2785634"> +<dt>Q: <a href="#id2787145"> I am writing an php script that needs to create temporary files in /tmp and then execute them, SELinux policy is preventing this. What should I do? </a> </dt> -<dt>Q: <a href="#id2785680"> +<dt>Q: <a href="#id2787191"> I am setting up swapping to a file, but I am seeing AVC messages in my log files? </a> </dt> -<dt>Q: <a href="#id2785717"> +<dt>Q: <a href="#id2787228"> Please explain the relabelto/relabelfrom permissions? </a> </dt> +<dt>Q: <a href="#id2787324"> + Where are SELinux AVC messages (denial logs, etc.) stored? + </a> +</dt> </dl></td></tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783674"></a><a name="id2783676"></a>Q: +<a name="id2785038"></a><a name="id2785041"></a>Q: </td> <td align="left" valign="top"> My application isn't working as expected and I am seeing @@ -1832,7 +1967,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783770"></a><a name="id2783772"></a>Q: +<a name="id2785134"></a><a name="id2785136"></a>Q: </td> <td align="left" valign="top"> I installed Fedora Core on a system with an existing @@ -1868,7 +2003,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783867"></a><a name="id2783869"></a>Q: +<a name="id2785231"></a><a name="id2785233"></a>Q: </td> <td align="left" valign="top"> After relabeling my <code class="filename">/home</code> using @@ -1891,7 +2026,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783924"></a><a name="id2783927"></a>Q: +<a name="id2785289"></a><a name="id2785291"></a>Q: </td> <td align="left" valign="top"> How do I share directories using NFS between Fedora Core and non-SELinux @@ -1927,7 +2062,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2783992"></a><a name="id2783994"></a>Q: +<a name="id2785356"></a><a name="id2785358"></a>Q: </td> <td align="left" valign="top"> How can I create a new Linux user account with the user's home @@ -1973,7 +2108,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784110"></a><a name="id2784112"></a>Q: +<a name="id2785474"></a><a name="id2785476"></a>Q: </td> <td align="left" valign="top"> I'm having troubles with avc errors filling my @@ -2002,7 +2137,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784195"></a><a name="id2784197"></a>Q: +<a name="id2785559"></a><a name="id2785561"></a>Q: </td> <td align="left" valign="top"> Even running in permissive mode, I'm getting a large number of @@ -2031,12 +2166,14 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784237"></a><a name="id2784239"></a>Q: +<a name="id2785601"></a><a name="id2785603"></a>Q: </td> <td align="left" valign="top"> I get a specific permission denial only when SELinux is in enforcing mode, but I don't see any audit messages in - <code class="filename">/var/log/audit/audit.log</code>. How can I identify the + <code class="filename">/var/log/messages</code> (or + <code class="filename">/var/log/audit/audit.log</code> if using the audit + daemon). How can I identify the cause of these silent denials? </td> </tr> @@ -2091,7 +2228,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784355"></a><a name="id2784357"></a>Q: +<a name="id2785724"></a><a name="id2785727"></a>Q: </td> <td align="left" valign="top"> Why do I not see the output when I run certain daemons in debug or @@ -2132,7 +2269,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784452"></a><a name="id2784454"></a>Q: +<a name="id2785822"></a><a name="id2785824"></a>Q: </td> <td align="left" valign="top"> When I do an upgrade of the policy package (for example, using @@ -2179,7 +2316,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784550"></a><a name="id2784552"></a>Q: +<a name="id2785920"></a><a name="id2785922"></a>Q: </td> <td align="left" valign="top"> If the policy shipping with an application package changes in a @@ -2198,7 +2335,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784633"></a><a name="id2784636"></a>Q: +<a name="id2786002"></a><a name="id2786006"></a>Q: </td> <td align="left" valign="top"> Why do binary policies distributed with Fedora, such as @@ -2217,7 +2354,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784696"></a><a name="id2784698"></a>Q: +<a name="id2786066"></a><a name="id2786068"></a>Q: </td> <td align="left" valign="top"> Will new policy packages disable my system? @@ -2240,7 +2377,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2784732"></a><a name="id2784734"></a>Q: +<a name="id2786102"></a><a name="id2786104"></a>Q: </td> <td align="left" valign="top"> How can I help write policy? @@ -2355,7 +2492,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785039"></a><a name="id2785041"></a>Q: +<a name="id2786409"></a><a name="id2786411"></a>Q: </td> <td align="left" valign="top"> My console is being flooded with messages. How do I turn them @@ -2376,7 +2513,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785069"></a><a name="id2785071"></a>Q: +<a name="id2786440"></a><a name="id2786442"></a>Q: </td> <td align="left" valign="top"> Can I test the default policy without installing the policy @@ -2413,7 +2550,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785167"></a><a name="id2785169"></a>Q: +<a name="id2786537"></a><a name="id2786540"></a>Q: </td> <td align="left" valign="top"> Why are some of my KDE applications having trouble under SELinux? @@ -2448,7 +2585,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785242"></a><a name="id2785245"></a>Q: +<a name="id2786613"></a><a name="id2786615"></a>Q: </td> <td align="left" valign="top"> Why does <code class="option">SELINUX=disabled</code> not work for me? @@ -2464,7 +2601,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785270"></a><a name="id2785272"></a>Q: +<a name="id2786640"></a><a name="id2786642"></a>Q: </td> <td align="left" valign="top"> I have a process running as @@ -2521,7 +2658,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785409"></a><a name="id2785411"></a>Q: +<a name="id2786780"></a><a name="id2786782"></a>Q: </td> <td align="left" valign="top"> What do these rpm errors mean? @@ -2562,7 +2699,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785485"></a><a name="id2785487"></a>Q: +<a name="id2729318"></a><a name="id2729320"></a>Q: </td> <td align="left" valign="top"> I want to run a daemon on a non standard port but SELinux will not @@ -2584,7 +2721,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785522"></a><a name="id2785524"></a>Q: +<a name="id2729356"></a><a name="id2729358"></a>Q: </td> <td align="left" valign="top"> How do I add additional translations to my MCS/MLS system? @@ -2624,7 +2761,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785580"></a><a name="id2785582"></a>Q: +<a name="id2787091"></a><a name="id2787093"></a>Q: </td> <td align="left" valign="top"> I have setup my MCS/MLS translations, now I want to designate @@ -2658,7 +2795,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785634"></a><a name="id2785636"></a>Q: +<a name="id2787145"></a><a name="id2787148"></a>Q: </td> <td align="left" valign="top"> I am writing an php script that needs to create temporary files in @@ -2679,7 +2816,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785680"></a><a name="id2785682"></a>Q: +<a name="id2787191"></a><a name="id2787193"></a>Q: </td> <td align="left" valign="top"> I am setting up swapping to a file, but I am seeing AVC messages @@ -2700,7 +2837,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785717"></a><a name="id2785719"></a>Q: +<a name="id2787228"></a><a name="id2787230"></a>Q: </td> <td align="left" valign="top"> Please explain the @@ -2744,32 +2881,55 @@ </ul></div> </td> </tr> +<tr class="question"> +<td align="left" valign="top"> +<a name="id2787324"></a><a name="id2787326"></a>Q: +</td> +<td align="left" valign="top"> + Where are SELinux AVC messages (denial logs, etc.) stored? + </td> +</tr> +<tr class="answer"> +<td align="left" valign="top">A:</td> +<td align="left" valign="top"> + In Fedora Core 2 and 3, SELinux AVC messages could be found in + <code class="filename">/var/log/messages</code>. + In Fedora Core 4, the audit daemon was added, and these messages + moved to + <code class="filename">/var/log/audit/audit.log</code>. + In Fedora Core 5, the audit daemon is not installed by default, and + consequently these messages can be found in + <code class="filename">/var/log/messages</code> unless you choose to + install the audit daemon, in which case AVC messages will be in + <code class="filename">/var/log/audit/audit.log</code>. + </td> +</tr> <tr class="qandadiv"><td align="left" valign="top" colspan="2"> <a name="faq-div-deploying-selinux"></a><h4 class="title"> <a name="faq-div-deploying-selinux"></a>1.4. Deploying SELinux</h4> </td></tr> <tr class="toc" colspan="2"><td align="left" valign="top" colspan="2"><dl> -<dt>Q: <a href="#id2785821"> +<dt>Q: <a href="#id2787378"> What file systems can I use for SELinux? </a> </dt> -<dt>Q: <a href="#id2785855"> +<dt>Q: <a href="#id2787412"> How does SELinux impact system performance? </a> </dt> -<dt>Q: <a href="#id2785886"> +<dt>Q: <a href="#id2787443"> What types of deployments, applications, and systems should I leverage SELinux in? </a> </dt> -<dt>Q: <a href="#id2785955"> +<dt>Q: <a href="#id2787512"> How does SELinux affect third-party applications? </a> </dt> </dl></td></tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785821"></a><a name="id2785823"></a>Q: +<a name="id2787378"></a><a name="id2787381"></a>Q: </td> <td align="left" valign="top"> What file systems can I use for SELinux? @@ -2795,7 +2955,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785855"></a><a name="id2785862"></a>Q: +<a name="id2787412"></a><a name="id2787420"></a>Q: </td> <td align="left" valign="top"> How does SELinux impact system performance? @@ -2815,7 +2975,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785886"></a><a name="id2785888"></a>Q: +<a name="id2787443"></a><a name="id2787446"></a>Q: </td> <td align="left" valign="top"> What types of deployments, applications, and systems should I @@ -2855,7 +3015,7 @@ </tr> <tr class="question"> <td align="left" valign="top"> -<a name="id2785955"></a><a name="id2785957"></a>Q: +<a name="id2787512"></a><a name="id2787514"></a>Q: </td> <td align="left" valign="top"> How does SELinux affect third-party applications?

18 years, 1 month

1
0
0 / 0

web/html/docs/selinux-faq-fc5/stylesheet-images 10.png, NONE, 1.1 11.png, NONE, 1.1 12.png, NONE, 1.1 13.png, NONE, 1.1 14.png, NONE, 1.1 15.png, NONE, 1.1 1.png, NONE, 1.1 2.png, NONE, 1.1 3.png, NONE, 1.1 4.png, NONE, 1.1 5.png, NONE, 1.1 6.png, NONE, 1.1 7.png, NONE, 1.1 8.png, NONE, 1.1 9.png, NONE, 1.1 caution.png, NONE, 1.1 important.png, NONE, 1.1 note.png, NONE, 1.1 tip.png, NONE, 1.1 titlepage.png, NONE, 1.1 warning.png, NONE, 1.1

by Paul W. Frields (pfrields)

Author: kwade Update of /cvs/fedora/web/html/docs/selinux-faq-fc5/stylesheet-images In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv30823/selinux-faq-fc5/stylesheet-images Added Files: 10.png 11.png 12.png 13.png 14.png 15.png 1.png 2.png 3.png 4.png 5.png 6.png 7.png 8.png 9.png caution.png important.png note.png tip.png titlepage.png warning.png Log Message: FC5 SELinux FAQ content; may be more coming, but this is enough to go LIVE with.

18 years, 1 month

1
0
0 / 0

web/html/docs/selinux-faq-fc5 index.php,NONE,1.1

by Paul W. Frields (pfrields)

Author: kwade Update of /cvs/fedora/web/html/docs/selinux-faq-fc5 In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv30823/selinux-faq-fc5 Added Files: index.php Log Message: FC5 SELinux FAQ content; may be more coming, but this is enough to go LIVE with. ***** Error reading new file: [Errno 2] No such file or directory: 'index.php'

18 years, 1 month

1
0
0 / 0

web/html/docs/selinux-faq index.php,1.3,1.4

by Paul W. Frields (pfrields)

Author: kwade Update of /cvs/fedora/web/html/docs/selinux-faq In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv30823/selinux-faq Modified Files: index.php Log Message: FC5 SELinux FAQ content; may be more coming, but this is enough to go LIVE with. Index: index.php =================================================================== RCS file: /cvs/fedora/web/html/docs/selinux-faq/index.php,v retrieving revision 1.3 retrieving revision 1.4 diff -u -r1.3 -r1.4 --- index.php 6 Dec 2005 06:53:51 -0000 1.3 +++ index.php 23 Mar 2006 21:39:51 -0000 1.4 @@ -9,6 +9,19 @@ ?> <h1>SELinux FAQs</h1> +<div class="tip" style="margin-left: 0.5in; margin-right: 0.5in;"> +<table border="0" summary="Tip: Fedora Core 5 SELinux FAQ available"> +<tr><td rowspan="2" align="center" valign="top" width="25"><img alt="[Tip]" src="/stylesheet-images/tip.png"></td> +<th align="left"><a href="/docs/selinux-faq-fc5/">Fedora Core 5 SELinux FAQ available</a></th> +</tr> +<tr><td colspan="2" align="left" valign="top"> + +You can find more Fedora SELinux content at <a href="http://fedoraproject.org/wiki/SELinux">http://fedoraproject.org/wiki/SELinux</a>. + +</td></tr> +</table> +</div> + SELinux is an enhancement to the Linux kernel that implements mandatory access control (MAC) and role-based access control (RBAC) in Fedora Core 2 and later. The SELinux FAQ has versions specific to versions of Fedora Core, including for versions in testing. @@ -19,6 +32,7 @@ <ul> <li><a href="/docs/selinux-faq-fc2/">Fedora Core 2 SELinux FAQ</a></li> <li><a href="/docs/selinux-faq-fc3/">Fedora Core 3 SELinux FAQ</a></li> + <li><a href="/docs/selinux-faq-fc5/">Fedora Core 5 SELinux FAQ</a></li> </ul>

18 years, 1 month

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

websites March 2006