selinux context for mysql user's home directory in MySQL server for zrm backup
Please help me out with selinux context. I have a RHEL5.4 as zrm server and the MySQL server is a fedora13. Everything is fine if i put the selinux in the permissive mode. But when its enabled the zrm schedular is a unable to access the /var/lib/mysql/.ssh/authorized_keys file which is needed for the ssh access, similarly i am unable to ssh the mysql user at MySQL server from the zrm server when selinux is enabled. But ssh also works well when selinux is set to permisssive mode. I hope if the selinux context is made appropriate the ssh will work and ultimately the zrm also will. So please help as to what context must be assigned to the directories of mysql user.
Re: selinux context for mysql user's home directory in MySQL server for zrm backup
On Tue, 7 Dec 2010 17:57:18 +0530 Cejo John cejo.j...@ipsrsolutions.com wrote: Please help me out with selinux context. I have a RHEL5.4 as zrm server and the MySQL server is a fedora13. Everything is fine if i put the selinux in the permissive mode. But when its enabled the zrm schedular is a unable to access the It's been a while since I worked with selinux, so I may be talking out of my hat. Doesn't selinux have a tool that lets you run something in permissive mode, then the tool figures out what changes to apply? -- Charles Curley /\ASCII Ribbon Campaign Looking for fine software \ /Respect for open standards and/or writing? X No HTML/RTF in email http://www.charlescurley.com/ \No M$ Word docs in email Key fingerprint = CE5C 6645 A45A 64E4 94C0 809C FFF6 4C48 4ECD DFDB
Re: selinux context for mysql user's home directory in MySQL server for zrm backup
On Tue, Dec 7, 2010 at 4:27 AM, Cejo John cejo.j...@ipsrsolutions.com wrote: Please help me out with selinux context. I have a RHEL5.4 as zrm server and the MySQL server is a fedora13. Everything is fine if i put the selinux in the permissive mode. But when its enabled the zrm schedular is a unable to access the /var/lib/mysql/.ssh/authorized_keys What is the output of ls -Z /var/lib/mysql/.ssh/authorized_keys? Does the scheduler work when you run from command line? If yes, you may want to look at MLS_LEVEL parameter in crontab. Paddy