On 23 Jul 2013 07:42, "Ken Smith" <kens@xxxxxxxxxxx> wrote: > > > For some reason auditd wasn't running or enabled. I'm now seeing the > messages I needed in /var/log/messages. I'm running bind chrooted and > various other tweeks mean I need to set SELinux accordingly. > Bind chroot via the standard chroot package should just with with selinux... Be careful that you don't just follow the audit.log blindly (eg audit2allow -aM) but think through each but carefully... I'd suggest starting for each exception with "is this already covered by a boolean" and then double checking your file contexts before even considering an additional custom module. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: SELinux Question
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: SELinux Question
- From: James Hogarth <james.hogarth@xxxxxxxxx>
- Date: Tue, 23 Jul 2013 10:46:58 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <51EE25C6.2090305@kensnet.org>
- Follow-Ups:
- Re: SELinux Question
- From: Ken Smith
- Re: SELinux Question
- References:
- SELinux Question
- From: Ken Smith
- Re: SELinux Question
- From: Gordon Messmer
- Re: SELinux Question
- From: Ken Smith
- SELinux Question
- Prev by Date: Re: How do I debug why Centos is asking for fonts to be installed?
- Next by Date: Fwd: When no MTA is installed, How to send an email with a cronjob?
- Previous by thread: Re: SELinux Question
- Next by thread: Re: SELinux Question
- Index(es):
 |