On 10/23/24 02:07, Tim via users wrote:
On Wed, 2024-10-23 at 00:54 -0700, ToddAndMargo via users wrote:
SELinux is preventing login from search access on
the directory /home/todd
Is that just it looking for a face image in your homespace to show on
the login screen?
# ausearch -c 'login' --
On Wed, 2024-10-23 at 00:54 -0700, ToddAndMargo via users wrote:
> SELinux is preventing login from search access on
> the directory /home/todd
Is that just it looking for a face image in your homespace to show on
the login screen?
> # ausearch -c 'login' --raw | audit2allow -M my-login
> ***
On 10/21/24 15:18, Samuel Sieb wrote:
On 10/21/24 3:13 PM, ToddAndMargo via users wrote:
Hi All,
Fedroa 39 and 41 maybe.
I am throwing the follow selinux error:
If you want to allow daemon-init to have watch
access on the mdevctl.d directory Then you need to
change the label
On 10/21/24 3:13 PM, ToddAndMargo via users wrote:
Hi All,
Fedroa 39 and 41 maybe.
I am throwing the follow selinux error:
If you want to allow daemon-init to have watch
access on the mdevctl.d directory Then you need to
change the label on /etc/mdevctl.d
Do you know what "
On 7/23/24 1:06 AM, Javier Perez wrote:
It just printed this message.
root@pepewin:~# restorecon -v
/usr/lib/systemd/system-generators/zram-generator
Relabeled /usr/lib/systemd/system-generators/zram-generator from
system_u:object_r:init_exec_t:s0 to
system_u:object_r:systemd_zram_generator_e
It just printed this message.
root@pepewin:~# restorecon -v
/usr/lib/systemd/system-generators/zram-generator
Relabeled /usr/lib/systemd/system-generators/zram-generator from
system_u:object_r:init_exec_t:s0 to
system_u:object_r:systemd_zram_generator_exec_t:s0
On Tue, Jul 23, 2024 at 1:34 AM Sam
On 7/22/24 11:27 PM, Javier Perez wrote:
Done.
Let's see if it works...
I was hoping to see what the output was. The only one that would have
affected anything was the last one. Did it do anything?
--
___
users mailing list -- users@lists.fedorap
Done.
Let's see if it works...
On Tue, Jul 23, 2024 at 12:51 AM Samuel Sieb wrote:
> On 7/22/24 10:35 PM, Javier Perez wrote:
> > Hi. I am getting SELINUX notifications about zram-generator.
> >
> > Should I report the bug?
> >
> > SELinux is preventing zram-generator from open access on the fil
On 7/22/24 10:35 PM, Javier Perez wrote:
Hi. I am getting SELINUX notifications about zram-generator.
Should I report the bug?
SELinux is preventing zram-generator from open access on the file
/usr/lib/systemd/zram-generator.conf.
Try running the following:
rpm -qV zram-generator
ls -lZ /us
On Tue, 21 Mar 2023 21:50:22 +0100
Patrick Dupre wrote:
> >
> > >> I get the following SELinux security alert which seems to be
> > >> difficult to fix because of the number of things to do.
> >
> > I don't understand why you think two things to do is difficult.
>
> Because, every time th
>
> >> I get the following SELinux security alert which seems to be
> >> difficult to fix because of the number of things to do.
>
> I don't understand why you think two things to do is difficult.
Because, every time that I make
semanage fcontext -a -t syslog_conf_t '/var/usermin/miniserv.pid'
s
I get the following SELinux security alert which seems to be
difficult to fix because of the number of things to do.
I don't understand why you think two things to do is difficult.
You can generate a local policy module to allow this access.
Do allow this access for now by executing:
# ausearc
Hi
On Mon, 20 Mar 2023 10:28:35 +0100 Patrick Dupre wrote:
> I did not get retuen about my request.
There was. Please, see the archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org/thread/NEDFHZEENU3YPWXCKENB2FDYL4YHYOW6/#5LDTZCEMCGHQHKSLJXRS3QIFVZ3IYE73
--
fr
Hello,
I did not get retuen about my request.
This alert is annoying because it pop up all the time,
and because it prevents the screen lock.
Is there any thing that I can make?
Thank.
===
Patrick DUPRÉ
Hi.
On Thu, 16 Mar 2023 10:32:27 +0100 Patrick Dupre wrote:
> SELinux is preventing systemd from open access on the file
> /var/usermin/miniserv.pid.
Another solution beside fixing the selinux context would perhaps be to change
the associated .service file to not use a .pid file.
What is the
On Thu, 16 Mar 2023 10:32:27 +0100
Patrick Dupre wrote:
> I get the following SELinux security alert which seems to be difficult
> to fix because of the number of things to do.
There is really only one thing to do, just run the two commands with
the proper selinux context selected as filetype.
>
> On 2022-07-12 01:02, Patrick Dupre wrote:
> > I do not how to deal wit this issue: in fc34 and fc36.
> >
> > SELinux security alert recommend the following:
> >
> > You need to change the label on /var/usermin/miniserv.pid
> > # semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
> >
On 2022-07-12 01:02, Patrick Dupre wrote:
I do not how to deal wit this issue: in fc34 and fc36.
SELinux security alert recommend the following:
You need to change the label on /var/usermin/miniserv.pid
# semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
where FILE_TYPE is one of th
> On 7/3/22 10:03, Patrick Dupre wrote:
> > I cannot delete it.
> > I tried to follow the recommendations with you success.
> > This machine is still in FC34 before I have time to backup the machine,
> > etc..
>
> Just to make sure: did you try the instructions as yourself or as root?
As root
>
On 7/3/22 10:03, Patrick Dupre wrote:
I cannot delete it.
I tried to follow the recommendations with you success.
This machine is still in FC34 before I have time to backup the machine, etc..
Just to make sure: did you try the instructions as yourself or as root?
___
It worked after I did `setenforce 0`, so SELinux is the problem. I have
my swap file inside its own BTRFS subvolume mounted at /swap and the
SELinux context for that directory is system_u:object_r:unlabeled_t:s0.
It looks like I need to allow systemd-sleep to search that directory. I
think the
On 4/17/22 22:09, Joe Zeff wrote:
On 4/17/22 22:47, Alexander Zhang wrote:
It worked after I did `setenforce 0`, so SELinux is the problem. I
have my swap file inside its own BTRFS subvolume mounted at /swap and
the SELinux context for that directory is
system_u:object_r:unlabeled_t:s0. It loo
Easier still is to remove that partition from fstab and reformat it as a
swap partition.
I guess I can use a swap partition, but since I use LUKS without LVM, I
would have to make a separate LUKS volume. I wanted to use a swap file
so that everything is in one LUKS volume.
(I forgot to reply
On 4/17/22 22:47, Alexander Zhang wrote:
It worked after I did `setenforce 0`, so SELinux is the problem. I have
my swap file inside its own BTRFS subvolume mounted at /swap and the
SELinux context for that directory is system_u:object_r:unlabeled_t:s0.
It looks like I need to allow systemd-sle
First try would be to disable SELinux to confirm your hypothesis.
However even if you fix the selinux problem i do not think this will
work, you need to have a swap partition for hibernate / resume to work,
the systemd-hibernate-resume man page makes reference to needing a
specific device node.
Hi,
From the error message you are getting the it looks like the swapfile or
the directory it is sat in has the wrong label. you can use some of the
policy tools to fix this by setting the correct context... the RHEL
guide is good source for this
https://access.redhat.com/documentation/en-us/red_
On Fri Apr15'22 11:31:25PM, Alexander Zhang wrote:
> Hello,
>
> I'm trying to enable hibernation to a swap file on Fedora 35. I've created a
> swapfile on a new BTRFS subvolume, added the resume dracut module, and set
> the kernel command line arguments. I've also added
> SYSTEMD_BYPASS_HIBERNATIO
On 4/16/22 8:31 AM, Alexander Zhang wrote:
Hello,
I'm trying to enable hibernation to a swap file on Fedora 35. I've created a swapfile
on a new BTRFS subvolume, added the resume dracut module, and set the kernel command
line arguments. I've also added SYSTEMD_BYPASS_HIBERNATION_MEMORY_CHECK=1
dac_read_search says that linux permissions are denying access.
and it says the file is /etc/shadow, and no one except root is
supposed to be able to read that file.
So whatever is trying to read /etc/shadow should not be trying to read
it, and makes me wonder what is going on, and/or why some pr
On 1/6/22 11:53, George N. White III wrote:
On Thu, 6 Jan 2022 at 11:13, Robert Moskowitz wrote:
On 1/5/22 23:10, Samuel Sieb wrote:
> On 1/5/22 18:18, Robert Moskowitz wrote:
>> On 1/5/22 21:16, Ed Greshko wrote:
>>> On 06/01/2022 09:25, Robert Moskowitz wrote:
On Thu, 6 Jan 2022 at 11:13, Robert Moskowitz wrote:
>
>
> On 1/5/22 23:10, Samuel Sieb wrote:
> > On 1/5/22 18:18, Robert Moskowitz wrote:
> >> On 1/5/22 21:16, Ed Greshko wrote:
> >>> On 06/01/2022 09:25, Robert Moskowitz wrote:
>
>
> On 1/5/22 17:17, Ed Greshko wrote:
> > On
On 1/5/22 23:10, Samuel Sieb wrote:
On 1/5/22 18:18, Robert Moskowitz wrote:
On 1/5/22 21:16, Ed Greshko wrote:
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
If you want to help identify if domain needs this
On 1/5/22 18:18, Robert Moskowitz wrote:
On 1/5/22 21:16, Ed Greshko wrote:
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
If you want to help identify if domain needs this access or you
have a file with the wro
On 1/5/22 21:16, Ed Greshko wrote:
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no o
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full detail; it looks like it may be logwatch caus
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full detail; it looks like it may be logwatch causing the problem.
What do I do to fix
On 10/12/2021 10:22, Nick Urbanik wrote:
There is an ongoing problem of decay of selinux labels on this
machine; I would appreciate any suggestions on how to troubleshoot
this I find it alarming.
I wouldn't call it a "decay". If it were that I wouldn't expect the context to
be valid. As it i
On 06/12/21 09:10 +1100, Nick Urbanik wrote:
On 05/12/21 09:59 -0500, Jonathan Billings wrote:
On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
I am regularly having selinux labels changing. This should never
happen, but it does quite continuously; many critical executables lose
their correct lab
On 05/12/21 17:49 -0500, Jonathan Billings wrote:
On Dec 5, 2021, at 17:11, Nick Urbanik wrote:
$ sudo restorecon -rv *
Relabeled /etc/cups/client.conf from system_u:object_r:cupsd_etc_t:s0 to
system_u:object_r:etc_t:s0
Relabeled /etc/cups/cupsd.conf.default from system_u:object_r:cupsd_etc_t:
> On Dec 5, 2021, at 17:11, Nick Urbanik wrote:
>
> $ sudo restorecon -rv *
> Relabeled /etc/cups/client.conf from system_u:object_r:cupsd_etc_t:s0 to
> system_u:object_r:etc_t:s0
> Relabeled /etc/cups/cupsd.conf.default from system_u:object_r:cupsd_etc_t:s0
> to system_u:object_r:cupsd_rw_et
On 05/12/21 09:59 -0500, Jonathan Billings wrote:
On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
I am regularly having selinux labels changing. This should never
happen, but it does quite continuously; many critical executables lose
their correct label, preventing me from logging in without
> On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
>
> I am regularly having selinux labels changing. This should never
> happen, but it does quite continuously; many critical executables lose
> their correct label, preventing me from logging in without a relabel.
>
> This is Fedora 35, upgraded
On 4/19/20 12:57 AM, Sreyan Chakravarty wrote:
> Although I was testing with F32 beta, so maybe there has been an
update that fixed it in F31.
I thought Fedora 32 would contain all the fixes of Fedora 31 even if it
was in beta.
No, because there's a freeze at each stage where no updates are
> Although I was testing with F32 beta, so maybe there has been an update
that fixed it in F31.
I thought Fedora 32 would contain all the fixes of Fedora 31 even if it was
in beta.
On Sun, Apr 19, 2020 at 11:20 AM Samuel Sieb wrote:
> On 4/18/20 12:05 PM, Sreyan Chakravarty wrote:
> > > That'
On 4/18/20 12:05 PM, Sreyan Chakravarty wrote:
> That's because you already added the selinux changes to fix that.
I didn't though. It works automatically, the only difference between now
and then is that I am using the command systemctl hibernate to trigger
hibernation. Before, I had set "On
> That's because you already added the selinux changes to fix that.
I didn't though. It works automatically, the only difference between now
and then is that I am using the command systemctl hibernate to trigger
hibernation. Before, I had set "On Power Button Press: Hibernate" from
Gnome Power Opt
On 4/18/20 6:20 AM, Sreyan Chakravarty wrote:
On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
After a lot of experimentation, I did manage to get swap file
hibernation to work.
The dracut module for resuming is, for some reason, not enabled by
default. (At least on the minimal install that I trie
On 4/18/20 1:46 AM, Sreyan Chakravarty wrote:
Also could you tell me where did you get the list of dracut modules from ?
dracut --list-modules
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fe
On 4/18/20 2:33 AM, Sreyan Chakravarty wrote:
On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
After a lot of experimentation, I did manage to get swap file
hibernation to work.
The dracut module for resuming is, for some reason, not enabled by
default. (At least on the minimal install that I trie
On 4/18/20 1:51 AM, Patrick O'Callaghan wrote:
On Fri, 2020-04-17 at 15:57 -0700, Samuel Sieb wrote:
On 4/17/20 2:36 PM, Patrick O'Callaghan wrote:
On Fri, 2020-04-17 at 13:21 -0700, Samuel Sieb wrote:
From the header of that man page, it's an "introduction to boot time
parameters", not an
> On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
>
> After a lot of experimentation, I did manage to get swap file
> hibernation to work.
> The dracut module for resuming is, for some reason, not enabled by
> default. (At least on the minimal install that I tried. Maybe because
> I didn't crea
> On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
>
> After a lot of experimentation, I did manage to get swap file
> hibernation to work.
> The dracut module for resuming is, for some reason, not enabled by
> default. (At least on the minimal install that I tried. Maybe because
> I didn't crea
On Fri, 2020-04-17 at 15:57 -0700, Samuel Sieb wrote:
> On 4/17/20 2:36 PM, Patrick O'Callaghan wrote:
> > On Fri, 2020-04-17 at 13:21 -0700, Samuel Sieb wrote:
> > > From the header of that man page, it's an "introduction to boot time
> > > parameters", not an exhaustive summary. As far as I ca
> On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
>
> After a lot of experimentation, I did manage to get swap file
> hibernation to work.
> The dracut module for resuming is, for some reason, not enabled by
> default. (At least on the minimal install that I tried. Maybe because
> I didn't crea
On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
I have just configured a 8GB swap file on my Fedora 31 laptop. But it
seems that SELinux is blocking access to the swap file.
After a lot of experimentation, I did manage to get swap file
hibernation to work.
The dracut module for resuming is, for
On 4/17/20 2:36 PM, Patrick O'Callaghan wrote:
On Fri, 2020-04-17 at 13:21 -0700, Samuel Sieb wrote:
From the header of that man page, it's an "introduction to boot time
parameters", not an exhaustive summary. As far as I can tell, it is
valid to use a swap file for hibernation. That paramet
On Fri, 2020-04-17 at 13:21 -0700, Samuel Sieb wrote:
> On 4/17/20 9:13 AM, Patrick O'Callaghan wrote:
> > On Fri, 2020-04-17 at 15:37 +, Sreyan Chakravarty wrote:
> > > > On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> > > >
> > > > It has to be a partition. A file can be on any kind
On 4/17/20 9:13 AM, Patrick O'Callaghan wrote:
On Fri, 2020-04-17 at 15:37 +, Sreyan Chakravarty wrote:
On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
It has to be a partition. A file can be on any kind of filesystem, so
how would the resume function know what to do?
From systemd-h
> There is no corresponding entry for resume_offset. I don't know if that's
> because
> Fedora doesn't support it.
>
> poc
Let me confirm this is some of the Arch distros. You may be right.
Give me some time.
___
users mailing list -- users@lists.fedo
On Fri, 2020-04-17 at 15:37 +, Sreyan Chakravarty wrote:
> > On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> >
> > It has to be a partition. A file can be on any kind of filesystem, so
> > how would the resume function know what to do?
> >
> > From systemd-hibernate-resume(8):
> >
>
On Fri, 2020-04-17 at 15:37 +, Sreyan Chakravarty wrote:
> > On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> >
> > It has to be a partition. A file can be on any kind of filesystem, so
> > how would the resume function know what to do?
> >
> > From systemd-hibernate-resume(8):
> >
>
On Fri, 17 Apr 2020 at 12:37, Sreyan Chakravarty wrote:
> > On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> >
> > It has to be a partition. A file can be on any kind of filesystem, so
> > how would the resume function know what to do?
> >
> > From systemd-hibernate-resume(8):
> >
> > syst
> On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
>
> It has to be a partition. A file can be on any kind of filesystem, so
> how would the resume function know what to do?
>
> From systemd-hibernate-resume(8):
>
> systemd-hibernate-resume@.service initiates the resume from hibernation. It
I am really confused as to why you can't use a Hibernate file.
On Fri, Apr 17, 2020 at 5:43 AM Samuel Sieb wrote:
> On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
> > I have just configured a 8GB swap file on my Fedora 31 laptop. But it
> > seems that SELinux is blocking access to the swap file.
https://wiki.archlinux.org/index.php/Power_management/Suspend_and_hibernate#Hibernation_into_swap_file
The Arch Wiki clearly describes that you can Hibernate into a swap file by
giving the resume_offset.
Is there any reason that using a Swap file is illegal for Hibernation ?
On Fri, Apr 17, 202
On Fri, 2020-04-17 at 01:10 -0700, Samuel Sieb wrote:
> On 4/17/20 1:07 AM, Patrick O'Callaghan wrote:
> > On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> > > On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
> > > > I have just configured a 8GB swap file on my Fedora 31 laptop. But it
> > > >
On 4/17/20 1:07 AM, Patrick O'Callaghan wrote:
On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
I have just configured a 8GB swap file on my Fedora 31 laptop. But it
seems that SELinux is blocking access to the swap file.
Can you hibernate to
On Thu, 2020-04-16 at 17:12 -0700, Samuel Sieb wrote:
> On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
> > I have just configured a 8GB swap file on my Fedora 31 laptop. But it
> > seems that SELinux is blocking access to the swap file.
>
> Can you hibernate to a swap *file*? I thought it had to
On 4/13/20 9:51 AM, Sreyan Chakravarty wrote:
I have just configured a 8GB swap file on my Fedora 31 laptop. But it
seems that SELinux is blocking access to the swap file.
Can you hibernate to a swap *file*? I thought it had to be a partition.
How would you set up the resume line for that?
On Thu, Apr 16, 2020 at 12:33 PM Sreyan Chakravarty
wrote:
> > On Mon, Apr 13, 2020 at 6:56 PM Sreyan Chakravarty >
> > wrote:
> >
> > Hi,
> >
> > There has already been reported a bugzilla:
> >
> > https://bugzilla.redhat.com/show_bug.cgi?id=1797543
> >
> > A new domain is needed to confine sys
> On Mon, Apr 13, 2020 at 6:56 PM Sreyan Chakravarty wrote:
>
> Hi,
>
> There has already been reported a bugzilla:
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1797543
>
> A new domain is needed to confine systemd-sleep. As a temporary workaround,
> you can create a file with the following
NB: On this list, we don't top-post, we comment under what we're
replying to, like I'll do below. Also, remove things that don't need
to be quoted, we don't need messages that get ever-longer.
bruce wrote:
> I'm not looking at fedora/centos as a sysAdmin. I'm coming at the OS
> as a means to get
Hey Tim!!
Thanks so much for the replies. This is exactly what I was hoping to
find.Someone willing to kind of add to my lack of knowledge.
Your comments about copying files .vs moving files was/is gold. That's the
kind of thing that wouldn't have crossed my mind to even think about.
I'm not loo
On Tue, 2020-04-14 at 14:01 -0400, bruce wrote:
> I've already got the VM, test users, httpd, etc.. And things run with
> selinux disabled.
>
> Now it's time to take the jump, and engage selinux!
Actually, that's going to be your biggest problem. If you've set up
and run things with it off, you'
On 4/14/20 5:26 PM, bruce wrote:
All I can say at this time..
Thanks... I guess...
ps. If/When I figure this all out, I'll post the cmds/order of running
the selinux cmds to accomplish my goal of being able to ensure the httpd
process can manage the files, as well as having users being able t
On Tue, 2020-04-14 at 14:01 -0400, bruce wrote:
> My use case:
> To create a test local VM
> To fire up httpd/mysql on the VM
> To create a couple of test users on the VM
> Create a test static website under /var/www/html/cat
>using index.html
> aa.php
Unless your virtual machine
All I can say at this time..
Thanks... I guess...
ps. If/When I figure this all out, I'll post the cmds/order of running the
selinux cmds to accomplish my goal of being able to ensure the httpd
process can manage the files, as well as having users being able to
read/write/delete the files...
but
On 4/14/20 3:08 PM, bruce wrote:
I don't know what the cmds are as well as the sequence I need to run
them in the correct order. This is what I'm looking to get me hands around
You already posted links to useful pages for that.
https://www.digitalocean.com/community/tutorials/an-introduction-t
Again...
I don't know what the cmds are as well as the sequence I need to run them
in the correct order. This is what I'm looking to get me hands around
On Tue, Apr 14, 2020 at 5:47 PM Samuel Sieb wrote:
> On 4/14/20 2:39 PM, bruce wrote:
> > Bu tI still would like to have the cmds to learn
On 4/14/20 2:39 PM, bruce wrote:
Bu tI still would like to have the cmds to learn from, as opposed to
just "depending" on the OS, and not really knowing how this stuff kind
of works.
So, any pointers/help would be cool!
I don't know what you're asking for. You don't need to install any
pac
Ok. thanks.
Bu tI still would like to have the cmds to learn from, as opposed to just
"depending" on the OS, and not really knowing how this stuff kind of works.
So, any pointers/help would be cool!
thanks
On Tue, Apr 14, 2020 at 5:35 PM Samuel Sieb wrote:
> On 4/14/20 2:01 PM, bruce wrote:
On 4/14/20 2:01 PM, bruce wrote:
Hi Samuel,
Thanks for the reply. What you provided doesn't seem to mesh with other
sites I've seen. Take a look at these sites and if you feel up to it,
get back to me with comments!!!
https://www.digitalocean.com/community/tutorials/an-introduction-to-selin
Hi Samuel,
Thanks for the reply. What you provided doesn't seem to mesh with other
sites I've seen. Take a look at these sites and if you feel up to it, get
back to me with comments!!!
https://www.digitalocean.com/community/tutorials/an-introduction-to-selinux-on-centos-7-part-1-basic-concepts
On 4/14/20 11:01 AM, bruce wrote:
My use case:
To create a test local VM
To fire up httpd/mysql on the VM
To create a couple of test users on the VM
Create a test static website under /var/www/html/cat
using index.html
aa.php
I've already got the VM, test users, httpd, etc.
On 14.04.20 12:49, Markus Schönhaber wrote:
...
sudo ausearch -c 'systemd-sleep' --raw | audit2allow -M my-systemdsleep
That way, ausearch will run with elevated privileges but audit2allow
will not. That's probably not what you intended.
yup, thanks for the hint.
--
sixpack13
_
13.04.20, 19:28 CEST sixpack13:
> and what happens if you perform the above two commands (everyone with
> "sudo" prefixed)
>
> sudo ausearch -c 'systemd-sleep' --raw | audit2allow -M my-systemdsleep
That way, ausearch will run with elevated privileges but audit2allow
will not. That's probably n
On Mon, Apr 13, 2020 at 8:23 PM Sreyan Chakravarty
wrote:
> Edit:
> > The message from the troubleshooter suggests that you run two commands
> > to get around the issue until it's fixed. Just follow them and you'll
> > be OK.
>
>
Can you please explain what they are doing, I don't know anything
On 04/13/2020 12:20 PM, Sreyan Chakravarty wrote:
Can you please explain what they are doing, I don't know anything about
SELinux.
Good question. The first command creates an exception for SELinux that
allows your system to work until the bug is fixed and the second one
installs it. I'm n
Edit:
> The message from the troubleshooter suggests that you run two commands
> to get around the issue until it's fixed. Just follow them and you'll
> be OK.
Can you please explain what they are doing, I don't know anything about
SELinux.
Also how do I reverse the commands once the bug is fixe
Can you please explain what they are doing, I don't know anything about
SELinux.
Also how do I reverse the commands once the bug is fixed in upstream ?
On Mon, Apr 13, 2020 at 11:39 PM Joe Zeff wrote:
> On 04/13/2020 11:57 AM, Zdenek Pytela wrote:
> > I don't know a whole lot about SELinux, do
Could you please explain what:
(allow init_t swapfile_t (file (getattr open read ioctl lock)))
is doing ?
Am I suppose to paste the above as is in the file ? is swapfile_t the name
of my swap file or is it a SELinux attribute ?
On Mon, Apr 13, 2020 at 11:29 PM Zdenek Pytela wrote:
>
>
> On Mon
I saw a pull request in the comments of the bug, did that solve the problem?
On Mon, Apr 13, 2020 at 11:29 PM Zdenek Pytela wrote:
>
>
> On Mon, Apr 13, 2020 at 6:56 PM Sreyan Chakravarty
> wrote:
>
>> I have just configured a 8GB swap file on my Fedora 31 laptop. But it
>> seems that SELinux i
On 04/13/2020 11:57 AM, Zdenek Pytela wrote:
I don't know a whole lot about SELinux, do I have to add a label or
something?
The message from the troubleshooter suggests that you run two commands
to get around the issue until it's fixed. Just follow them and you'll
be OK.
___
On Mon, Apr 13, 2020 at 6:56 PM Sreyan Chakravarty
wrote:
> I have just configured a 8GB swap file on my Fedora 31 laptop. But it
> seems that SELinux is blocking access to the swap file.
>
> SELinux is preventing systemd-sleep from read access on the file
> fedora.swap.
>
> * Plugin catchal
On 13.04.20 19:00, Sreyan Chakravarty wrote:
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'systemd-sleep' --raw | audit2allow -M my-systemdsleep
# semodule -X 300 -i my-systemdsleep.pp
...
and
Is there no way to hibernate using SELinux Enforcing ??
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-
Look like is an existing bug:
https://bugzilla.redhat.com/show_bug.cgi?id=1797543
In SELinux are there any ways of adding domains ?
On Mon, Apr 13, 2020 at 10:21 PM Sreyan Chakravarty
wrote:
> I have just configured a 8GB swap file on my Fedora 31 laptop. But it
> seems that SELinux is blocking
On 3/22/20 2:35 PM, bruce wrote:
ok.. so there's a file that has bobs private key that I copy to the
local server in the .ssh/ dir path..
It's not bob's private key. "bob" has the *public* half of the key.
The private key is for the user that's connecting.
so anyone who logs into the loc
On 2020-03-23 07:35, bruce wrote:
>
> In your example, exactly what is the
> [egreshko@meimei ~]$ ssh-copy-id bob@frk copying??
>
> is the cmd copying the public key for meimei to the bob/.ssh dir/path
It is copying/appending the public-key of user "egreshko" to the file
bob/.ssh/authorized_ke
1 - 100 of 851 matches
Mail list logo
