Re: [CentOS] selinux: how to allow access?

On Tue, 20 Mar 2018, hw wrote: which is what access rights are for Yes and no. You can run firefox and let it download files into the Downloads directory, but not elsewhere. You can run apache on port 80/443 but not let it open up a different port. You can stop apache reading files outside

Re: [CentOS] selinux: how to allow access?

On 03/20/2018 01:42 PM, Peter Kjellström wrote: On Tue, 20 Mar 2018 13:07:12 +0100 hw wrote: ... So what do you really gain from selinux, and is that worthwhile all the trouble and the hours spent to fix the problems it creates? What about the impact on performance? The main

Re: [CentOS] selinux: how to allow access?

On Tue, 20 Mar 2018 13:07:12 +0100 hw wrote: ... > So what do you really gain from selinux, and is that worthwhile all > the trouble and the hours spent to fix the problems it creates? What > about the impact on performance? The main feature is that lots of software is indeed

Re: [CentOS] selinux: how to allow access?

On Tue, 20 Mar 2018, hw wrote: That depends. If the anti-theft system of your car prevents you from driving it, wouldn´t you turn it off so you can drive to work? How many of us tape the immobiliser transponder to the base of the lock? I don´t believe that. First you need to figure out if

Re: [CentOS] selinux: how to allow access?

On 03/16/2018 10:38 PM, Phil Perry wrote: On 16/03/18 18:37, Alexander Dalloz wrote: Am 16.03.2018 um 13:09 schrieb hw: On 03/16/2018 12:14 PM, Richard Grainger wrote: Yet again I could not find any documentation explaining how to do basic things like this :(  Selinux is more like a curse

Re: [CentOS] selinux: how to allow access?

On 16/03/18 18:37, Alexander Dalloz wrote: Am 16.03.2018 um 13:09 schrieb hw: On 03/16/2018 12:14 PM, Richard Grainger wrote: Yet again I could not find any documentation explaining how to do basic things like this :(  Selinux is more like a curse than anything else :( Why is there not even

Re: [CentOS] selinux: how to allow access?

> Am 16.03.2018 um 13:09 schrieb hw : > > On 03/16/2018 12:14 PM, Richard Grainger wrote: >>> Yet again I could not find any documentation explaining how to do basic >>> things like this :( Selinux is more like a curse than anything else :( Why >>> is there not even a good

Re: [CentOS] selinux: how to allow access?

Am 16.03.2018 um 13:09 schrieb hw: On 03/16/2018 12:14 PM, Richard Grainger wrote: Yet again I could not find any documentation explaining how to do basic things like this :(  Selinux is more like a curse than anything else :( Why is there not even a good documentation? More trolling?

Re: [CentOS] selinux: how to allow access?

On 03/16/2018 12:14 PM, Richard Grainger wrote: Yet again I could not find any documentation explaining how to do basic things like this :( Selinux is more like a curse than anything else :( Why is there not even a good documentation? More trolling? Show me a good documentation and/or name

Re: [CentOS] selinux: how to allow access?

> Yet again I could not find any documentation explaining how to do basic > things like this :( Selinux is more like a curse than anything else :( Why > is there not even a good documentation? More trolling? ___ CentOS mailing list CentOS@centos.org

[CentOS] selinux: how to allow access?

Hi, how do I allow exim access to a socket in order to be able to do local deliveries to cyrus? type=AVC msg=audit(1521179280.845:1920270): avc: denied { name_connect } for pid=319 comm="exim" dest=24 scontext=system_u:system_r:exim_t:s0 tcontext=system_u:object_r:lmtp_port_t:s0