Re: SELinux Question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]




Gordon Messmer wrote:
> On 07/22/2013 07:41 AM, Ken Smith wrote:
>    
>> Hi Guys, My google foo is failing me this afternoon. Just configuring a
>> new C6 install. I know there are SELinux alerts happening, eg: I know I
>> need to enable named to write to the local .jnl file as part of dynamic
>> DNS, but sealert -b is not listing any alerts. I can see raw audit
>> messages.  Is there some daemon I have forgotten to start or install?
>>      
> If you don't see AVCs logged and suspect that SELinux is causing you
> problems anyway, enable all logging:
>
> semodule -BD
>
> http://fedoraproject.org/wiki/SELinux/Troubleshooting
>
> If you don't see AVCs in the log, then SELinux isn't denying access.
>
> Normally if files are created in /var/named/dynamic, then the SELinux
> context will already be set correctly.
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos
>
>    
For some reason auditd wasn't running or enabled. I'm now seeing the 
messages I needed in /var/log/messages. I'm running bind chrooted and 
various other tweeks mean I need to set SELinux accordingly.

Thanks

Ken

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos




[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux