nagios web interface work with enabled SELinux

hamideh daliri niceforums at yahoo.com
Tue Sep 13 08:36:31 CEST 2005

Previous message: nagios web interface work with enabled SELinux
Next message: Passive tests and notifications
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

if the SELinux is active and the enforcing mod is set
the instructions below will solve the internal error
of apache ...
i have defined a new type for nagios ,named nagios_t ,
it should be defined in
/etc/selinux/targeted/src/policy/types/file.te
what should be written in this file is :

type nagios_t,file_type,root_dir_type,sysadmfile;

then add the lines below to
/etc/selinux/targeted/src/policy/domains/program/apache.te
:

allow httpd_t nagios_t : dir { getattr search };
allow httpd_t nagios_t:file{getattr read execute\
execute_no_trans };

then you have to change the security label of nagios
direstory and its contents :
go to where the nagios is installed , on my box is
/usr/local/ and run this command :

chcon –Rf -u root -r object_r -t nagios_t nagios/

then change the path to var/ subdirectory in nagios
dir and run these commands :

chcon –Rf -u user_u -r object_r -t nagios_t status.sav
chcon –Rf -u user_u -r object_r -t nagios_t nagios.log

now go to /etc/selinux/targeted/src/policy   and run '
make reload ' or 'make load ' to compile the new
policy and load it to load it to memory .
it is ok on my box ,
hope it helps you too .
my knowlege about SELinux isn't too much ,
so if you think there is any problem with what i did
or it will cause any problem in future let me know,
tnx .

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 


-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: nagios web interface work with enabled SELinux
Next message: Passive tests and notifications
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list