On 2014-08-13 14:39, Robert Moskowitz wrote:
On 08/12/2014 05:19 PM, Gordan Bobic wrote:
On 08/12/2014 09:56 PM, Robert Moskowitz wrote:
So I go to do my first semanage after installing selinux-policy and
rebooting then installing policycoreutils-python:
semanage port -a -t ssh_port_t -p tcp nnnn
and get the error:
/usr/sbin/semanage: SELinux policy is not managed or store cannot be
accessed.
So whatelse is needed?
It could be a number of things. Have you loaded a policy? What do you
get from:
semodule -l
If you touch /.autorelabel and reboot that might fix it.
If you are still getting a problem, this thread has a reasonable
summary of other possible issues:
Have you looked at this page for possible solutions?
http://en.it-usenet.org/thread/16387/2623/
So first I checked that the F19 base I used had working SELinux, and
it did. Then I rebooted my RSEL and went to this thread and tried the
first check discussed:
# sestatus
SELinux status: disabled
Well I guess we know were to start! Something important is probably
NOT installed. When I asked here what to install to get SELinux and
was told to install selinux-policy which I did. It seems that is not
enough. Further in the message starting the thread, the following
modules are listed:
kernel26-selinux-2.6.31
selinux-coreutils-7.6
selinux-pam-1.1.0
refpolicy-2.20091117
selinux-sysvinit-2.86
checkpolicy-2.0.20
libselinux-2.0.89
libsemanage-2.0.42
libsepol-2.0.41
selinux-usr-policycoreutils-2.0.77
sepolgen-1.0.18
Which of these are part of the base tarball? Which do I need to add?
First things first - do you have a file called:
/etc/selinux/config
and does it contain lines:
SELINUX=enabled
SELINUXTYPE=targeted
Secondly, try:
cat /tmp/packages <<EOF
kernel-selinux
selinux-coreutils
selinux-pam
refpolicy
selinux-sysvinit
checkpolicy
libselinux
libsemanage
libsepol
selinux-usr-policycoreutils
sepolgen
EOF
yum install `cat /tmp/packages`
and see if that installs any thing additional.
Gordan
_______________________________________________
users mailing list
[email protected]
http://lists.redsleeve.org/mailman/listinfo/users
