[CentOS] disable SELinux
Hiep Nguyen
hiep at ee.ucr.edu
Tue Mar 4 19:30:09 UTC 2008
thanks. i may well do that b/c i'm behind firewall anyway. also, i'm not
ready to tackle iptables at this time.
t. hiep
-------------- next part --------------
Hiep Nguyen wrote:
> On Tue, 4 Mar 2008, Alex White wrote:
> > On Tue, 4 Mar 2008, Hiep Nguyen wrote:
> >> On Tue, 4 Mar 2008, Tom Brown wrote:
> >>>>
> >>>> with minimal installation on centos 5, selinux also included.
> >>>> how do i remove selinux or disable it at least?
> >>>
> >>> cat /etc/sysconfig/selinux
> >>>
> >>> you'll figure it out from there!
> >>
> >> what command i can issue to enforce the change w/o reboot the box.
> >
> > man setenforce
> >
> > Are you sure you really want to turn off selinux?
> >
> > If you reboot, unless you change /etc/sysconfig/selinux, your
> > machine will have selinux re-enabled.
>
> for testing, i need to disable selinux, but something still not working
> right.
>
> i'm trying to figure out why i can't access http://10.0.0.160 from the
> same network (10.0.0.x).
>
> on 10.0.0.160 box, i can access http://localhost, or http://10.0.0.160,
> but from any other computer, i can't.
>
> any advice how to troubleshoot this? thanks.
Try disabling iptables and see if you can then access it:
# service iptables stop
Then you know it's iptables, and can add an iptables entry for apache:
# service iptables start
# iptables -I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
# iptables -I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
# iptables-save >/etc/sysconfig/iptables
Or do so graphically through /usr/bin/system-config-securitylevel
Or disable iptables all together (if behind a firewall) with:
# chkconfig iptables off
-Ross
______________________________________________________________________
This e-mail, and any attachments thereto, is intended only for use by
the addressee(s) named herein and may contain legally privileged
and/or confidential information. If you are not the intended recipient
of this e-mail, you are hereby notified that any dissemination,
distribution or copying of this e-mail, and any attachments thereto,
is strictly prohibited. If you have received this e-mail in error,
please immediately notify the sender and permanently delete the
original and any copy or printout thereof.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3971 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20080304/d6211057/attachment.bin>
-------------- next part --------------
_______________________________________________
CentOS mailing list
CentOS at centos.org
http://lists.centos.org/mailman/listinfo/centos
More information about the CentOS
mailing list