DormanResearch : DealingWithSELinux?

Referers: 20080624KSD :: LinuxHints :: (Remote :: Orphans :: Tree )

Dorman Wiki
Dorman Lab Wiki
The joys of SELinux.  Someone somewhere needs to write a gentle, user-friendly manual about SELinux.  In the meantime, here we are using blindly and getting frustrated by it.

Very often, SELinux will make something go wrong without any indication of why.  If you find yourself in this situation, don't forget to check the log files.  Perhaps the command sudo tail -f /var/log/messages, will show you many lines like the following:
Jun 24 11:12:44 subarnarekha kernel: type=1400 audit(1214323964.208:95): avc:  denied  { getattr } for  pid=32120 comm="sshd" path="/usr/local/maitra/.ssh/authorized_keys" dev=sda6 ino=786484 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:usr_t:s0 tclass=file
Jun 24 11:12:44 subarnarekha kernel: type=1400 audit(1214323964.212:96): avc:  denied  { getattr } for  pid=32120 comm="sshd" path="/usr/local/maitra/.ssh/authorized_keys" dev=sda6 ino=786484 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:usr_t:s0 tclass=file

Don't panic, SELinux is helpfully interfering with command (comm) sshd.  In fact, sshd is being denied access to /usr/local/maitra/.ssh/authorized_keys, something really crucial for its regular operation.  It is time for you to intervene.  Below I list problematic encounters I have had with SELinux.

0ssh

0httpd

0Commands
There is no comment on this page. [Display comments/form]