selinux config question

NirvanaBaby · 06-23-2013, 04:44 PM

So I have a question. The problem was solved but I don't like how I solved it. I rebooted my Fedora 12 server. I have a symlink in my /var/html directory pointing to the mount point on an NTFS drive and after reboot, this symlink was returning a 403 Forbidden in the browser. I remember googling this problem for days before but couldn't remember the fix until I found something involving selinux in the error log. I remembered I had to go into the config file, set SELINUX=permissive and reboot. But my question is, if I did this before, why did I have to do it again? Did the original reboot cause the config file to be rewritten back to default of SELINUX=enforcing? If so, why didn't the reboot after the edit undo the edit back to default? Any input appreciated!

John VV · 06-23-2013, 08:56 PM

Quote:

I rebooted my Fedora 12 server.

Not good .Fedora 12 is 6( almost 7 ) versions and 2 3/4 years out of date
it went End Of Life back in "2010-12-02"
Dec. of 2010

it has received NO security updates since "2010-12-02"
and SE is now 3 years behind in the tools and definitions

please stay current and install Fedora 19 in a few days when it is released
a new clean install on a reformatted drive
Then 6 months after that do a new clean install of fedora 20
and so on every 6 months

as to the se setting did you use "setenforce " in the boot line and did you change it in the boot image

for creating your own custom rules there is "audit2allow"
it uses the se error logs to make a new rule

but fedora 12 is and has been unsupported for almost 3 years

"SELINUX=permissive" is ONLY for debugging and fixing issues
"SELINUX=enforcing" is the setting that it defaults to , and what it should be set at

sathya_css · 06-27-2013, 07:24 AM

Quote:

Originally Posted by NirvanaBaby

So I have a question. The problem was solved but I don't like how I solved it. I rebooted my Fedora 12 server. I have a symlink in my /var/html directory pointing to the mount point on an NTFS drive and after reboot, this symlink was returning a 403 Forbidden in the browser. I remember googling this problem for days before but couldn't remember the fix until I found something involving selinux in the error log. I remembered I had to go into the config file, set SELINUX=permissive and reboot. But my question is, if I did this before, why did I have to do it again? Did the original reboot cause the config file to be rewritten back to default of SELINUX=enforcing? If so, why didn't the reboot after the edit undo the edit back to default? Any input appreciated!

Hi NirvanaBaby,

As far as i know. If you have disabled the SElinux via the CLI by using getenforce command, once you reboot the configuration changes and its goes back to default rule. Where a if you have edited the configuration files of SE linux (/etc/sysconfig/selinux) and gave SElinux=disabled , it never changes ever after you reboot the system.

In you case you have given it to permissive mode but still the SElinux config is enable. So when you reboot the server it changes back to the original config file ....

Hope this helps...

Regards,
Sathya