selinux没有作用？

linuxboy823

我想按照rhce课程实验，让httpd服务无法启动，通过设置selinux,目前如下

os:rhel5.6

[root@rheltest1 /]# sestatus
SELinux status:                 enabled
SELinuxfs mount:                /selinux
Current mode:                   enforcing
Mode from config file:          enforcing
Policy version:                 21
Policy from config file:        targeted



[root@rheltest1 /]# cat /etc/sysconfig/selinux
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#       enforcing - SELinux security policy is enforced.
#       permissive - SELinux prints warnings instead of enforcing.
#       disabled - SELinux is fully disabled.
SELINUX=enforcing
# SELINUXTYPE= type of policy in use. Possible values are:
#       targeted - Only targeted network daemons are protected.
#       strict - Full SELinux protection.
SELINUXTYPE=targeted

[root@rheltest1 /]# setsebool -P httpd_disable_trans=1

[root@rheltest1 /]# getsebool httpd_disable_trans
httpd_disable_trans --> on

[root@rheltest1 /]# service httpd restart
Stopping httpd:                                            [  OK  ]
Starting httpd: httpd: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for ServerName
                                                           [  OK  ]
[root@rheltest1 /]#

请教对selinux熟悉的大师解答。

cst05001

回复 1# linuxboy823


    httpd_disable_trans
↑这是什么意思你知道么？

linuxboy823

回复  linuxboy823


    httpd_disable_trans
↑这是什么意思你知道么？
cst05001 发表于 2011-05-07 13:50

    刚学习selinux，视频上这么介绍的，请大师指点

shplpy

企业里很少有用selinux的吧

CrossGrave

httpd_disable_trans 的意思是永久不受selinux的保护

haishui