- 论坛徽章:
- 0
|
我想按照rhce课程实验,让httpd服务无法启动,通过设置selinux,目前如下
os:rhel5.6
[root@rheltest1 /]# sestatus
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode: enforcing
Mode from config file: enforcing
Policy version: 21
Policy from config file: targeted
[root@rheltest1 /]# cat /etc/sysconfig/selinux
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - SELinux is fully disabled.
SELINUX=enforcing
# SELINUXTYPE= type of policy in use. Possible values are:
# targeted - Only targeted network daemons are protected.
# strict - Full SELinux protection.
SELINUXTYPE=targeted
[root@rheltest1 /]# setsebool -P httpd_disable_trans=1
[root@rheltest1 /]# getsebool httpd_disable_trans
httpd_disable_trans --> on
[root@rheltest1 /]# service httpd restart
Stopping httpd: [ OK ]
Starting httpd: httpd: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for ServerName
[ OK ]
[root@rheltest1 /]#
请教对selinux熟悉的大师解答。 |
|