SELinux Problem

[navsoftdev87]

I can not access my internet due to SELinux Problem.

I tried the following command

ifconfig -a
ifdown eth0
ifup eth0

After running these command i got selinux icon on the right top of my window.

Please guide me how can i resolve my problem so that i start working on Linux.

[atreyu]

Are you root, when performing these actions? You need to be root to muck with networking, typically.

Try disabling SELinux, temporarily, to see if you can operate as you wish.

First, get SELinux status:

Code:

getenforce

Now disable it:

Code:

setenforce 0

Now try your commands again.

If that works, do you required SELinux to be running? If so, maybe an SELinux pro here can tell you what you need to do...otherwise, just disable it permanently.

[navsoftdev87]

I login as a root on my system. Thanks I will try it today evening. Thanks for your reply

[navsoftdev87]

getenforce
setenforce 0
didn't work.

I run these commands

after above commands
ifdown eth0
ifup eh0
This give me an error like
Determinig Ip Information for eth0 /sbin/dhclient-script:line 43 4299 segmentation fault cp -fp /etc/resov.conf /etc/resolv.conf.predhclient

and Below is my selinux problem--
---------------------------------
Summary:

Summary:

SELinux is preventing cat (logwatch_t) "execmem" to <Unknown> (logwatch_t).

Detailed Description:

SELinux denied access requested by cat. It is not expected that this access is
required by cat and this access may signal an intrusion attempt. It is also
possible that the specific version or configuration of the application is
causing it to require additional access.

Allowing Access:

You can generate a local policy module to allow this access - see FAQ
(fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable
SELinux protection altogether. Disabling SELinux protection is not recommended.
Please file a bug report (bugzilla.redhat.com/bugzilla/enter_bug.cgi)
against this package.

Additional Information:

Source Context system_u:system_r:logwatch_t:SystemLow-SystemHigh
Target Context system_u:system_r:logwatch_t:SystemLow-SystemHigh
Target Objects None [ process ]
Source cat
Source Path <Unknown>
Port <Unknown>
Host localhost.localdomain
Source RPM Packages
Target RPM Packages
Policy RPM selinux-policy-2.4.6-255.el5
Selinux Enabled True
Policy Type targeted
MLS Enabled True
Enforcing Mode Enforcing
Plugin Name catchall
Host Name localhost.localdomain
Platform Linux localhost.localdomain 2.6.18-164.el5 #1 SMP
Tue Aug 18 15:51:54 EDT 2009 i686 i686
Alert Count 2
First Seen Tue 07 Jun 2011 10:09:30 AM EDT
Last Seen Wed 08 Jun 2011 11:23:24 AM EDT
Local ID d84f127c-5d38-4b9c-9212-fe0e7ddcb88a
Line Numbers

Raw Audit Messages

host=localhost.localdomain type=AVC msg=audit(1307546604.589:416): avc: denied { execmem } for pid=4819 comm="cat" scontext=system_u:system_r:logwatch_t:s0-s0:c0.c1023 tcontext=system_u:system_r:logwatch_t:s0-s0:c0.c1023 tclass=process

host=localhost.localdomain type=SYSCALL msg=audit(1307546604.589:416): arch=40000003 syscall=11 success=yes exit=0 a0=86bed68 a1=86bf0b0 a2=86beec8 a3=0 items=0 ppid=4818 pid=4819 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="cat" subj=system_u:system_r:logwatch_t:s0-s0:c0.c1023 key=(null)




Please help me I want to work on Linux Because I dont like to work on Windows So please tell me what should i do.
M waiting for your reply..



Determining

[atreyu]

What output did the getenforce/setenforce commands return?

Anyway, try disabled SELinux complete by editing the file
/etc/selinux/config so that it contains SELINUX=disabled. Then reboot for changes to take effect.

If you cannot do that for some reason, then reboot, and interrupt the boot process by hitting tab/escape key, and add " enforcing=0" to the kernel command line arguments.