[CentOS] NOT Solved - Re: SELinux policy to allow Dovecot to connect to Mysql

Tue Apr 25 08:04:10 UTC 2017
Robert Moskowitz <rgm at htt-consult.com>

I thought I had this fixed, but I do not.  I was away from this problem 
working on other matters, and came back (after a reboot) and it is still 
there, so I suspect when I thought I had it 'fixed' I was running with 
setenforce 0 from another problem (that is fixed).

So anyone know how to get dovecot dict connecting to mysql when 
enforcing?  Googling is not finding any real help.

On 04/07/2017 04:37 PM, Robert Moskowitz wrote:
> I have been getting the following on my new mailserver:
>
> Apr  7 10:17:27 z9m9z dovecot: dict: Error: mysql(localhost): Connect 
> failed to database (postfix): Can't connect to local MySQL server 
> through socket '/var/lib/mysql/mysql.sock' (13) - waiting for 25 
> seconds before retry
>
> They go away when I setenforce 0.
>
> So I googled dovecot mysql selinux and the only worthwhile hit was:
>
> http://zszsit.blogspot.com/2012/12/dovecot-mysql-selinux-issue-on-centos6.html 
>
>
> that provides a /etc/selinux/dovecot2mysql.te
>
> Is there a simpler way like a setsbool option?
>
> With all the howtos on dovecot with mysql, it is interesting that none 
> of them seem to have this problem.  Maybe because they connect to 
> mysql through TCP port 3306 which has ITS set of problems (like 
> MariaDB defaults to not listening on TCP).
>
> thanks!
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>