![[PukiWiki]](image/pukiwiki.png "[PukiWiki]")
CentOs?
cat /etc/sysconfig/selinux
ftp://fr2.rpmfind.net/linux/fedora/core/updates/3/i386/selinux-policy-strict-sources-1.19.10-2.noarch.rpm ftp://fr2.rpmfind.net/linux/fedora/core/updates/3/i386/selinux-policy-strict-1.19.10-2.noarch.rpm
yum install selinux-policy-targeted-sources
cat /selinux/enforce
echo 0 > /selinux/enforce
getcon
getsebool -a
setsebool httpd_ssi_exec 0
sestatus -v
/etc/selinux/strict/src/policy/domains/program
/etc/selinux/strict/src/policy/file_contexts/program
/etc/selinux/strict/src/policy/users
make reload
domains file_contexts
/var/log/messages
Jul 3 00:54:52 localhost kernel: audit(1190319691.598:0): avc: denied { setattr } for pid=9280 comm=smbd name=smbpasswd dev=dm-0 ino=5276804 scontext=root:system_r:initrc_t tcontext=root:object_r:samba_etc_t tclass=file
audit2allow -d -v >> domains/add_org.te
chcon setfiles
.autorelabel
run_init /etc/init.d/httpd start
newrole -r sysadm_r
http://fedoranews.yanbaru.dyndns.org/creativecommons/selinux-faq-ja/
