LAB 4.1 - SELinux logs
Hello everyone,
I've managed to do the lab exercise, however I have a question concerning SELinux.
By default, SELinux was disabled on my VM so I've changed enforce mode to Permissive (by editing /etc/sysconfig/selinux file), rebooted and changed root password again, just to see what would happen. After reboot, the password was successfully updated but I couldn't find any SELinux reports. I've checked with getenforce and SELinux is indeed in Permissive mode.
Next, I try setting SELinux to Enforcing mode and either I don't get the login prompt for student, either it doesn't accept the password. So, I guess SELinux is working (?)
Why don't I get any warning messages when in Permissive mode ?
In /var/log/messages I get messages like:
Jun 10 09:38:26 second kernel: SELinux: Initializing. Jun 10 09:38:26 second systemd[1]: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN) Jun 10 09:38:27 second systemd[1]: Successfully loaded SELinux policy in 137.817ms. Jun 10 09:38:27 second systemd: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN)
/var/log/audit is empty and /var/log/avc* doesn't exist...
Comments
-
Hi k0dard,
Can you please confirm the course number and version on the cover of the manual? Thanks.The "audit" package should be installed, check with "systemctl status auditd" It will create entries in the file /var/log/audit/audit.log. Messages from SELinux generally show up as "AVC". If auditd is running and "setroubleshoot-server" installed, then the system errolog (/var/log/messages on CentOS) will have more verbose entries for the SELinux messages.
I'm not sure why you are changing the root password. Let me know.
Regards Lee
0 -
Hello Lee,
And thanks for your answer!
I'm changing the root password because it's a lab exercise in LFS 216...
Regards k0dard0
Categories
- All Categories
- 175 LFX Mentorship
- 175 LFX Mentorship: Linux Kernel
- 745 Linux Foundation IT Professional Programs
- 372 Cloud Engineer IT Professional Program
- 168 Advanced Cloud Engineer IT Professional Program
- 73 DevOps IT Professional Program - Discontinued
- 3 DevOps & GitOps IT Professional Program
- 98 Cloud Native Developer IT Professional Program
- 7.6K Training Courses & Learning Paths
- AI & ML Training
- Blockchain & Decentralized Identity Training
- Cloud & Containers Training
- Cybersecurity Training
- DevOps & Site-Reliability Training
- Linux Kernel Development Training
- Networking Training
- Open Source Best Practice Training
- System Administration Training
- System Engineering Training
- Web & Application Development Training
- 2 LFD103-JP クラス フォーラム
- 4 LFD210-CN Class Forum
- 764 LFD259 Class Forum
- 681 LFS101 Class Forum
- 2 LFS158-JP クラス フォーラム
- 162 LFS207 Class Forum
- 3 LFS207-DE-Klassenforum
- 4 LFS207-JP クラス フォーラム
- 61 LFS241 Class Forum
- 52 LFS242 Class Forum
- 42 LFS243 Class Forum
- 19 LFS244 Class Forum
- 4 LFS250-JP クラス フォーラム
- 166 LFS253 Class Forum
- 19 LFS256 Class Forum
- 1.4K LFS258 Class Forum
- 165 LFS261 Class Forum
- 26 LFS267 Class Forum
- 792 Hardware
- 202 Drivers
- 68 I/O Devices
- 37 Monitors
- 95 Multimedia
- 173 Networking
- 91 Printers & Scanners
- 87 Storage
- 768 Linux Distributions
- 81 Debian
- 67 Fedora
- 22 Linux Mint
- 13 Mageia
- 24 openSUSE
- 150 Red Hat Enterprise
- 31 Slackware
- 13 SUSE Enterprise
- 356 Ubuntu
- 465 Linux System Administration
- 31 Cloud Computing
- 73 Command Line/Scripting
- Github systems admin projects
- 98 Linux Security
- 78 Network Management
- 101 System Management
- 46 Web Management
- 105 Mobile Computing
- 18 Android
- 72 Development
- 1.2K New to Linux
- 1K Getting Started with Linux
- 392 Off Topic
- 121 Introductions
- 181 Small Talk
- 29 Study Material
- 940 Programming and Development
- 310 Kernel Development
- 612 Software Development
- 975 Software
- 367 Applications
- 182 Command Line
- 5 Compiling/Installing
- 68 Games
- 317 Installation
- Archived
- 2 LFD140 Class Forum
Upcoming Training
-
August 20, 2018
Kubernetes Administration (LFS458)
-
August 20, 2018
Linux System Administration (LFS301)
-
August 27, 2018
Open Source Virtualization (LFS462)
-
August 27, 2018
Linux Kernel Debugging and Security (LFD440)