This may be helpful:
Security-Enhanced Linux for mere mortals
https://www.youtube.com/watch?v=_WOKRaM-HI4
I gave this presentation at Red Hat Summit a couple of years ago, it's
still relevant. I talk about how to enable SELinux on a system where
it's been disabled.
Hope this helps!
Thomas
On 8/16/21 9:53 AM, François Patte wrote:
Bonjour,
For some reason (I explain later) I disabled selinux in
/etc/selinux/config file.
When I re-enabled selinux (SELINUX=enforcing in the config file) I
could not restart my system: no service could start and I got a kernel
panic.
I had to rescue my system (see my other post) and disabled selinux.
Why??? I remember that long ago, when you enabled selinux boot could
last a long time waiting for the indexation of files, but I have never
seen a kernel panic.
So, how do I proceed to re-enable selinux on my system?
Thank you.
PS. I disabled selinux because it prevented to start a service (dictd,
see my post) but it was a wrong message of selinux alert: the problem
was not selinux but the upgrade from f32 to f34 which had changed the
owner of the dictd.log file (dictd changed to root).
This is a second wrong message with the one of the rescue tool (see my
post on rescue)
_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
