RE: disable SELinux

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Hiep Nguyen wrote:
> On Tue, 4 Mar 2008, Alex White wrote:
> > On Tue, 4 Mar 2008, Hiep Nguyen wrote:
> >> On Tue, 4 Mar 2008, Tom Brown wrote:
> >>>>
> >>>> with minimal installation on centos 5, selinux also included.
> >>>> how do i remove selinux or disable it at least?
> >>>
> >>> cat /etc/sysconfig/selinux
> >>>
> >>> you'll figure it out from there!
> >>
> >> what command i can issue to enforce the change w/o reboot the box.
> >
> > man setenforce
> >
> > Are you sure you really want to turn off selinux?
> >
> > If you reboot, unless you change /etc/sysconfig/selinux, your
> > machine will have selinux re-enabled.
> 
> for testing, i need to disable selinux, but something still not working 
> right.
> 
> i'm trying to figure out why i can't access http://10.0.0.160 from the 
> same network (10.0.0.x).
> 
> on 10.0.0.160 box, i can access http://localhost, or http://10.0.0.160, 
> but from any other computer, i can't.
> 
> any advice how to troubleshoot this? thanks.

Try disabling iptables and see if you can then access it:

# service iptables stop

Then you know it's iptables, and can add an iptables entry for apache:

# service iptables start
# iptables -I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
# iptables -I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
# iptables-save >/etc/sysconfig/iptables

Or do so graphically through /usr/bin/system-config-securitylevel

Or disable iptables all together (if behind a firewall) with:

# chkconfig iptables off

-Ross

______________________________________________________________________
This e-mail, and any attachments thereto, is intended only for use by
the addressee(s) named herein and may contain legally privileged
and/or confidential information. If you are not the intended recipient
of this e-mail, you are hereby notified that any dissemination,
distribution or copying of this e-mail, and any attachments thereto,
is strictly prohibited. If you have received this e-mail in error,
please immediately notify the sender and permanently delete the
original and any copy or printout thereof.

<<attachment: smime.p7s>>

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux