Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread Stephen Harris
Sorry, I got trigger happy with the "delete" key... so this message is a little out of order... Eero Volotinen wrote: > how about using auditd or ossec ? And it looks like auditd may be exactly what I need. Thanks! -- rgds Stephen ___ CentOS mailin

Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread Eero Volotinen
how about using auditd or ossec ? -- Eero 2014-04-25 23:32 GMT+03:00 Bowie Bailey : > On 4/25/2014 4:27 PM, Stephen Harris wrote: > > On Fri, Apr 25, 2014 at 02:51:40PM -0400, m.r...@5-cent.us wrote: > >> Stephen Harris wrote: > >>> a problem when CFe modifies a file that I don't want modified

Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread Eero Volotinen
how about using audits ? 2014-04-25 23:32 GMT+03:00 Bowie Bailey : > On 4/25/2014 4:27 PM, Stephen Harris wrote: > > On Fri, Apr 25, 2014 at 02:51:40PM -0400, m.r...@5-cent.us wrote: > >> Stephen Harris wrote: > >>> a problem when CFe modifies a file that I don't want modified on my > >>> machin

Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread Bowie Bailey
On 4/25/2014 4:27 PM, Stephen Harris wrote: > On Fri, Apr 25, 2014 at 02:51:40PM -0400, m.r...@5-cent.us wrote: >> Stephen Harris wrote: >>> a problem when CFe modifies a file that I don't want modified on my >>> machine. >> Doesn't cfengine allow for logging changes on a per-system basis? > I don'

Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread Stephen Harris
On Fri, Apr 25, 2014 at 02:51:40PM -0400, m.r...@5-cent.us wrote: > Stephen Harris wrote: > > a problem when CFe modifies a file that I don't want modified on my > > machine. > Doesn't cfengine allow for logging changes on a per-system basis? I don't control the cfengine configuration, so I don't

Re: [CentOS] Some basic SELinux questions

2014-04-25 Thread m . roth
Stephen Harris wrote: > At my place we don't use SELinux because we have a gazillion tonnes of > legacy software that just are not compatible with the default policies. > No one wants to go to the effort of working out everything that needs > changing. > > We also use cfengine for central managemen

[CentOS] Some basic SELinux questions

2014-04-25 Thread Stephen Harris
At my place we don't use SELinux because we have a gazillion tonnes of legacy software that just are not compatible with the default policies. No one wants to go to the effort of working out everything that needs changing. We also use cfengine for central management. Which somestimes causes a pro