James Hogarth wrote: >> I'd like to run SELinux on my CentOS server in enforcing mode, >> but I get the above message when I run sealert. >> I assume this is because I am accessing the server from my laptop? .. >> Am I right in thinking the message arises from my remote connection? >> And if so, is there a simple solution? > Too little information at present to tell. > > Does it work if the system is in permissive? The CentOS server is running with SELinux in permissive mode. I would prefer to run it in enforcing mode, and to that end would like to solve the problem above. > Did you ever have the system in disabled and then switched to > permissive/enforcing? No, CentOS-6.4 was recently installed, and the system has always been in permissive mode. > Do you have xauth installed? This is the response to "yum install xauth": Package 1:xorg-x11-xauth-1.0.2-7.1.el6.x86_64 already installed and latest version > 9 times out of 10 with this message it's just that > there is no (or incorrect) .Xauthority > so the X server rightfully denies the untrusted connection. On the server =================== [tim at grover ~]$ ls -lsZ .Xauthority -rw-------. tim tim unconfined_u:object_r:xauth_home_t:s0 .Xauthority =================== Same on the connecting laptop =================== [tim at rose ~]$ ls -lsZ .Xauthority -rw-------. tim tim unconfined_u:object_r:xauth_home_t:s0 .Xauthority =================== Incidentally, if there was something wrong with .Xauthority shouldn't sealert point this out? -- Timothy Murphy e-mail: gayleard /at/ eircom.net School of Mathematics, Trinity College, Dublin 2, Ireland