[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 235
  • Last Modified:

Running on startup

Hi guys hope u r well.

Im running Redhat Linux Enterprise 5, and Im having an issue that if I reboot my server, selinux (security enhanced linux) kicks in in Enforcing mode.
After the servers boots up, i can change it to permissive mode by running the following...

setenforce 0

I dont want to have to keep executing this each time my system reboots.

Can some nice person suggest a way I can automate the way of setting selinux to load on startup in Permissive mode by running the following command...

setenforce 0

Any help greatly appreciated.

0
Simon336697
Asked:
Simon336697
2 Solutions
 
Kamran ArshadIT AssociateCommented:
Hi,

Use enforcing=0 in your kernel boot line to boot into permissive mode. See /boot/grub/grub.conf for systems which use the grub bootloader. Conversely, setting enforcing=1 boots your system into enforcing mode.

Fedora Core has a new sysconfig file to do this a little more easily. By adding

    SELINUX=permissive

into /etc/sysconfig/selinux. Other options are enforcing and disabled. Note that disabled in here doesn't fully disable the SELinux kernel ( see next question ) but simply boots into permissive mode and skips loading the policy.

This assumes your kernel is built with the CONFIG_SECURITY_SELINUX_DEVELOP flag set which permits booting permissive mode.
0
 
arrkerr1024Commented:
rhel5 has /etc/sysconfig/selinux too.   You can just set
SELINUX=disabled
to disable it completely.

running system-config-securitylevel-tui is the text-based gui way to turn it off.
0
 
Simon336697Author Commented:
Thank you so much to both of you kind people.

0

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now