provide mysql access to guest_u
Daniel J Walsh
dwalsh at redhat.com
Tue Feb 5 13:27:28 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 02/04/2013 09:53 PM, Lakshmipathi.G wrote:
> Hi - I have a restricted account with guest_u.How to provide mysql access
> to guest_u without breaking other services?
>
> I tried "setsebool -P allow_user_mysql_connect 1"
>
> Still it says - ERROR 2002 (HY000): Can't connect to local MySQL server
> through socket '/var/lib/mysql/mysql.sock' (13)
>
>
> Thanks for help.
>
>
>
> -- ---- Cheers, Lakshmipathi.G FOSS Programmer. www.giis.co.in
> <http://www.giis.co.in>
>
>
> -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
I would add a custom policy module
policy_module(myguest, 1.0)
gen_require(`
type guest_t;
')
mysql_stream_connect(guest_t)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlERCMAACgkQrlYvE4MpobNLbQCeJqNTxrAw1oV/tCd+e71M0Ev6
PaUAn3TWvpof/olf4erYYXj/VhvUU38Q
=Q8c9
-----END PGP SIGNATURE-----
More information about the selinux
mailing list