boolean value had been reset after system-upgrade

Shintaro Fujiwara <shintaro.fujiwara@xxxxxxxxx> · Mon, 16 Nov 2015 06:20:03 +0900

Hi, happy SELinux.

I have a AWS fedora server SELinux enabled.

I could system-upgrade from 22 to 23 allright except one boolean option had been reset to (off,off).

Why did not boolean value survive after system-upgrade reboot?

Here's what I did.
------------------------------------------------------------------------------
# dnf update --refresh
# dnf install dnf-plugin-system-upgrade
# dnf system-upgrade download --releasever=23
# dnf system-upgrade reboot

I checked by web page and I got,

ERROR: SQLSTATE[08006] [7] could not connect to server: Permission denied Is the server running on host "localhost" (::1) and accepting TCP/IP connections on port 5432? could not connect to server: Permission denied Is the server running on host "localhost" (127.0.0.1) and accepting TCP/IP connections on port 5432? 

I knew I set some boolean --off to --on, so I grepped the boolean list.

# semanage boolean --list | grep httpd

I found this despite my difinition.

httpd_can_network_connect_db   (off  ,  off)  Allow httpd to can network connect db

So, I set the value again.

# semanage boolean --modify httpd_can_network_connect_db --on
------------------------------------------------------------------------------------
No problem otherwise, thanks.

-- 
Linux Distribution Project
http://sourceforge.net/projects/pinkrabbitlinux/

日本にヘヴィメタル・ハードロックを根付かせるページ
http://heavymetalhardrock.no-ip.info/

世界中でセキュアＯＳのSELinuxを使いやすくするフリーソフト
http://sourceforge.net/projects/segatex/

CMS（PHPとPostgreSQLを使ったフリーソフト）
http://sourceforge.net/projects/webon/
https://github.com/intrajp/irforum_jp

--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux