If SELinux affect normal operation of Linux server?

Posted on 2009-04-28
Medium Priority
Last Modified: 2013-12-16
When I need edit config file in my server or delete, copy file ... I disable SElinux to do these work, then I enable it.
This way is right?

SElinux should always enable to protect server? and Is it not good for what case?

Thanks in advanced!
Question by:laptop1vn
1 Comment
LVL 29

Accepted Solution

fosiul01 earned 600 total points
ID: 24249485
why you need to disalbe selinux when you do copy or delete ??
selinux does not create any problem if you try to copy and past.

selinux is to protec server for unautorized access

as an example
suppose you httd running and you have put some file under /var/www/html/webdirectory

so if you check the permission of that directory you will see something like this

system_u:object_r:httpd_sys_content_t html  

so here html is protect by selinux ...

now if you want to modify the default virtual host directory from /var/www/html to /var/html

then you need to change the permission of this /html for selinux, other wise, selinux will not allow apache to read that directory

with this command

chcon -R -t httpd_sys_content_t /Directory_name

so now you have enabled security enhanced in new location for html ....


Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Little introduction about CP: CP is a command on linux that use to copy files and folder from one location to another location. Example usage of CP as follow: cp /myfoder /pathto/destination/folder/ cp abc.tar.gz /pathto/destination/folder/ab…
Often times it's very very easy to extend a volume on a Linux instance in AWS, but impossible to shrink it. I wanted to contribute to the experts-exchange community a way of providing a procedure that works on an AWS instance. It can also be used on…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses
Course of the Month14 days, 3 hours left to enroll

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question