[SOLVED] Can not enable SELinux.
Posted: 2012/04/17 03:15:13
I recently migrated an OVH kimsufi to CentOS 6.2. After making a few configurations I checked SELinux status and was surprised to see it was disabled. However, the configuration file shows it as enabled. I'm unable to start it with any commands and would really appreciate any help or tips anyone can offer.
I followed the SELinux section in the RHEL man and still can't enable it. Setting selinux=permissive and relabeling the file system did not work either. I think OVH may have it disabled in a bootfile or kernel. Thanks in advance for helping!
uname
[code]Linux hostname.com 3.2.13-grsec-xxxx-grs-ipv6-64 #1 SMP Thu Mar 29 09:48:59 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux[/code]
/etc/selinux/config
[code]# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of these two values:
# targeted - Targeted processes are protected,
# mls - Multi Level Security protection.
SELINUXTYPE=targeted[/code]
rpm -qa | grep selinux
[code]selinux-policy-3.7.19-126.el6_2.10.noarch
selinux-policy-targeted-3.7.19-126.el6_2.10.noarch
libselinux-python-2.0.94-5.2.el6.x86_64
libselinux-2.0.94-5.2.el6.x86_64
libselinux-utils-2.0.94-5.2.el6.x86_64[/code]
rpm -qa | grep policycoreutils
[code]policycoreutils-python-2.0.83-19.21.el6_2.x86_64
policycoreutils-2.0.83-19.21.el6_2.x86_64[/code]
rpm -qa | grep setroubleshoot
[code]
setroubleshoot-plugins-3.0.16-1.el6.noarch
setroubleshoot-server-3.0.38-2.1.el6.x86_64
setroubleshoot-3.0.38-2.1.el6.x86_64[/code]
getenforce
[code]Disabled[/code]
I followed the SELinux section in the RHEL man and still can't enable it. Setting selinux=permissive and relabeling the file system did not work either. I think OVH may have it disabled in a bootfile or kernel. Thanks in advance for helping!
uname
[code]Linux hostname.com 3.2.13-grsec-xxxx-grs-ipv6-64 #1 SMP Thu Mar 29 09:48:59 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux[/code]
/etc/selinux/config
[code]# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of these two values:
# targeted - Targeted processes are protected,
# mls - Multi Level Security protection.
SELINUXTYPE=targeted[/code]
rpm -qa | grep selinux
[code]selinux-policy-3.7.19-126.el6_2.10.noarch
selinux-policy-targeted-3.7.19-126.el6_2.10.noarch
libselinux-python-2.0.94-5.2.el6.x86_64
libselinux-2.0.94-5.2.el6.x86_64
libselinux-utils-2.0.94-5.2.el6.x86_64[/code]
rpm -qa | grep policycoreutils
[code]policycoreutils-python-2.0.83-19.21.el6_2.x86_64
policycoreutils-2.0.83-19.21.el6_2.x86_64[/code]
rpm -qa | grep setroubleshoot
[code]
setroubleshoot-plugins-3.0.16-1.el6.noarch
setroubleshoot-server-3.0.38-2.1.el6.x86_64
setroubleshoot-3.0.38-2.1.el6.x86_64[/code]
getenforce
[code]Disabled[/code]