Hi All,
Please can someone assist me on this, I enabled Selinux on Ubuntu 14.04 server and it's disabling ssh remote login for all users including root.
From the ssh terminal I get the following error:
ssh root@192.168.x.x
Last login: Wed Mar 25 12:39:02 2015 from 192.168.x.x
/bin/bash: Permission denied
Connection to 192.168.211.135 closed.
tail /var/log/auth.log
ubuntu sshd[1640]: Accepted password for root from 192.168.x.x port 51082 ssh2
ubuntu sshd[1642]: Accepted password for root from 192.168.x.x port 51089 ssh2
ubunt sshd[1640]: Received disconnect from 192.168.x.x: disconnected by user
audit2allow --all
sshd_t
This avc is a constraint violation. you would need to modify the attribute of either the source or target types to allow this access.
possible cause is the source user (system_u) and target user (unconfined_u) are different.
possible cause is the source role (system_r) and target role (unconfined_r) are different.
possible cause is the source level (s0) and target level (s0-s0:c0.c255) are different.
allow sshd_t unconfined_t![]( "Stick Out Tongue")
rocess transition.
Please how can I make this changes to take effect.
Thanks in advance.
Please can someone assist me on this, I enabled Selinux on Ubuntu 14.04 server and it's disabling ssh remote login for all users including root.
From the ssh terminal I get the following error:
ssh root@192.168.x.x
Last login: Wed Mar 25 12:39:02 2015 from 192.168.x.x
/bin/bash: Permission denied
Connection to 192.168.211.135 closed.
tail /var/log/auth.log
ubuntu sshd[1640]: Accepted password for root from 192.168.x.x port 51082 ssh2
ubuntu sshd[1642]: Accepted password for root from 192.168.x.x port 51089 ssh2
ubunt sshd[1640]: Received disconnect from 192.168.x.x: disconnected by user
audit2allow --all
sshd_t
This avc is a constraint violation. you would need to modify the attribute of either the source or target types to allow this access.
possible cause is the source user (system_u) and target user (unconfined_u) are different.
possible cause is the source role (system_r) and target role (unconfined_r) are different.
possible cause is the source level (s0) and target level (s0-s0:c0.c255) are different.
allow sshd_t unconfined_t
Please how can I make this changes to take effect.
Thanks in advance.
-- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
