Re: security level not changing

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sun, 3 Nov 2002, w wrote:

> On Sunday 03 November 2002 14:02, Matthew Saltzman wrote:
> > On Sun, 3 Nov 2002, w wrote:
> > > I can't get the security level to change when using
> > > redhat-config-securitylevel .. it just stays at 'High" all the time.
> > >  I don't think it's actually high though, because I can use real
> > > player through the web, and the manual says that it should not work
> > > on 'High' security.  I have iptables installed, but not ipchains, and
> > > when I check services, iptable is running.  I also tried entering
> > > '/sbin/service iptables restart' after trying to make a config
> > > change, but when I called up the config, it was still sitting on
> > > 'High'.  Any suggestions as to how I might get this working as
> > > intended?
> >
> > redhat-config-securitylevel is a front end for lokkit.  lokkit is a
> > write-only app--it does not initialize itself to your current
> > configuration, it always starts the same way.  So it's not a very good
> > way to see what your current config is.
> >
> > Use "/etc/service iptables status" to see the current iptables
> > configuration.  The configuration is stored in /etc/sysconfig/iptables.
>
> This is very curious .. I don't have a file /etc/sysconfig/iptables, and
> when I enter /etc/service iptables status, nothing appears.  'rpm
> -qa|grep lokkit' shows: lokkit-0.50-18  ... I don't have gnome-lokkit
> installed.  I wonder what's going on here?  What should I do to restore
> it to working order (perhaps reload iptables, lokkit .. anything else?).

First, sorry for my typo.  It should be "/sbin/service iptables status".
If that isn't the problem, continue.

Let's get the obvious out of the way first:

Make sure that iptables is set to start at boot ("/sbin/chkconfig --list
iptables") and turn it on if it is not ("/sbin/chkconfig iptables on").
Make sure it is actually running ("/sbin/service iptables start"). Run
redhat-config-securitylevel or lokkit all the way through.  Then check
again.

-- 
		Matthew Saltzman

Clemson University Math Sciences
mjs@clemson.edu
http://www.math.clemson.edu/~mjs



-- 
Psyche-list mailing list
Psyche-list@redhat.com
https://listman.redhat.com/mailman/listinfo/psyche-list
[Index of Archives]     [Fedora General Discussion]     [Red Hat General Discussion]     [Centos]     [Kernel]     [Red Hat Install]     [Red Hat Watch]     [Red Hat Development]     [Red Hat 9]     [Gimp]     [Yosemite News]

  Powered by Linux