Hello!
on my centos 4.4 i have enable selinux, but after this change syslogd can't no more run:
# /etc/init.d/syslog restart Shutting down kernel logger: [ OK ] Shutting down system logger: [FAILED] Starting system logger: syslogd: error while loading shared libraries: libc.so.6: cannot open shared object file: No such file or directory [FAILED] Starting kernel logger: [ OK ]
and in dmesg centos report me that:
audit(1163775960.711:5): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562290 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file audit(1163775960.711:6): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562290 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file audit(1163775960.711:7): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562222 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file
The installation in very basic, but contain piranha, pulse, and others rpm from RHCS.
The problem is that syslogd can't log nothing :(
Why this in the default configuration?
Thanks
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Give "fixfiles relabel" a try. It should solve your problem.
On Fri, Nov 17, 2006 at 04:12:54PM +0100, Alessio Cecchi wrote:
Hello!
on my centos 4.4 i have enable selinux, but after this change syslogd can't no more run:
# /etc/init.d/syslog restart Shutting down kernel logger: [ OK ] Shutting down system logger: [FAILED] Starting system logger: syslogd: error while loading shared libraries: libc.so.6: cannot open shared object file: No such file or directory [FAILED] Starting kernel logger: [ OK ]
and in dmesg centos report me that:
audit(1163775960.711:5): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562290 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file audit(1163775960.711:6): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562290 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file audit(1163775960.711:7): avc: denied { read } for pid=4325 comm="syslogd" name="libc.so.6" dev=dm-0 ino=4562222 scontext=root:system_r:syslogd_t tcontext=system_u:object_r:file_t tclass=lnk_file
The installation in very basic, but contain piranha, pulse, and others rpm from RHCS.
The problem is that syslogd can't log nothing :(
Why this in the default configuration?
Thanks
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
- -- Rodrigo Barbosa "Quid quid Latine dictum sit, altum viditur" "Be excellent to each other ..." - Bill & Ted (Wyld Stallyns)
Il giorno ven, 17/11/2006 alle 16.37 +0100, Alessio Cecchi ha scritto:
Il giorno ven, 17/11/2006 alle 13.18 -0200, Rodrigo Barbosa ha scritto:
Give "fixfiles relabel" a try. It should solve your problem.
I have solved with "touch /.autorelabel; reboot"
But why this? Thanks
Ok, i have found the answer here:
http://www.startcom.org/docs/en/SELinux%20Guide%20StartCom%20Enterprise% 20Linux%204.0.x/rhlcommon-section-0068.html
Thanks
But why this?
In modifying the files (whatever you did), you changed the selinux contexts of them. This change in context is seen as in conflict with the Mandatory Access Controls that selinux puts into place. ls -Z has more information.
Il giorno ven, 17/11/2006 alle 16.37 +0100, Alessio Cecchi ha scritto:
Il giorno ven, 17/11/2006 alle 13.18 -0200, Rodrigo Barbosa ha scritto:
Give "fixfiles relabel" a try. It should solve your problem.
I have solved with "touch /.autorelabel; reboot"
After this now piranha gui wan't start:
audit(1163782934.372:8): avc: denied { name_bind } for pid=3357 comm="piranha_gui" src=3636 scontext=root:system_r:httpd_t tcontext=system_u:object_r:port_t tclass=tcp_socket
I think that the problem is the port 3636 that httpd cannot open, if i set the port to 80 in: /etc/sysconfig/ha/conf/httpd.conf
this error go away.
Another error persist:
Starting piranha-gui: (13)Permission denied: piranha_gui: could not open error log file /var/log/piranha/piranha-gui. Unable to open logs
This error can't be solved with:
chcon -R -h -t httpd_sys_content_t /var/log/piranha/
There is a way to start piranha with selinux enable?
-
Alessio Cecchi -
Jim Perrin -
Rodrigo Barbosa