I am trying to enable SELinux on bootup for my supported kernel
2.6.26.8.tex1
I am running PCLinuxOS 2009 Beta 2 which is based on Mandriva/Mandrake
From my reading, I know that I am able to set SELinux to boot (preferably in passive mode) however this would still 'change' my files; therefore I would need to run the utility/command: "setfiles"
The problem I am having relates to the supporting files needed to run the application effectively. For my linux distribution, the config/info file is located here:
You will .. need a policy configuration and a labeled filesystem.
...obtain the policy compiler (checkpolicy), the utility for
labeling filesystems (setfiles), and an example policy configuration
from Security-Enhanced Linux
downloading the needed packages from Download stable SELinux release,
I then try to compile but receive numerous errors such as this example for the checkpolicy package (which contains the setfiles) command
Code:
[root@localhost checkpolicy-1.34.7]# make -f Makefile
cc -g -Wall -Werror -O2 -pipe -fno-strict-aliasing -I. -I/usr/include -o checkpolicy.o -c checkpolicy.c
checkpolicy.c:73:37: error: sepol/policydb/policydb.h: No such file or directory
checkpolicy.c:74:37: error: sepol/policydb/services.h: No such file or directory
checkpolicy.c:75:40: error: sepol/policydb/conditional.h: No such file or directory
checkpolicy.c:76:38: error: sepol/policydb/hierarchy.h: No such file or directory
checkpolicy.c:77:34: error: sepol/policydb/flask.h: No such file or directory
checkpolicy.c:78:35: error: sepol/policydb/expand.h: No such file or directory
checkpolicy.c:79:33: error: sepol/policydb/link.h: No such file or directory
In file included from checkpolicy.c:82:
checkpolicy.h:4:36: error: sepol/policydb/ebitmap.h: No such file or directory
In file included from checkpolicy.c:82:
checkpolicy.h:7: error: expected specifier-qualifier-list before ‘ebitmap_t'
In file included from checkpolicy.c:83:
parse_util.h:33: error: expected ‘)' before ‘*' token
...
checkpolicy.c:1011: warning: format ‘%s' expects type ‘char *', but argument 4 has type ‘int'
checkpolicy.c:1019: warning: implicit declaration of function ‘strcpy'
checkpolicy.c:1019: warning: incompatible implicit declaration of built-in function ‘strcpy'
checkpolicy.c:1022: warning: format ‘%s' expects type ‘char *', but argument 4 has type ‘int'
checkpolicy.c:392: warning: unused variable ‘pf'
checkpolicy.c:376: warning: unused variable ‘avd'
make: *** [checkpolicy.o] Error 1
I turns out I am unable to compile any of the packages. Am I missing something very obvious or is this because of all the changes the kernel versions go through in relation to drivers?
_________________________________________
At this point, I am seriously considering just building the kernel from scratch but my question is, if i am to do this, how difficult would it be to 'copy' the final working settings from this configuration into my boot sequence for my present distribution? Would this be unnecessarily messy? Any other suggestions?
Hi,
Has anyone used gcc compiler and know alot about it? I am compiling a file with:
gcc -o xyz xyz.c abc.o -lsocket -lnsl
it compiles pretty fine.
But whe I use switches
gcc -o -Wall -pedantic -ansi xyz xyz.c abc.o -lsocket -lnsl
it starts giving illogical, rather I should say stupid... (1 Reply)
I am on a fedora core 2.6.9-1.677 i686
which is selinux enabled unlike the version I was on before .. which had to be manually enabled ..and if you knew nothing of the sort you were lost.. that was the case for me anyway! like i was saying ... now I am on a system that is enabled I have just... (1 Reply)
Hi Guys,
We are migrating AIX 5.1 to AIX 5.3. With this upgrade the C/C++ compiler is also upgraded to Visual Age C++ 6.0.
After upgrading, when we tried to (re)compile our programs (since ibm open library classes are not going to work with new compiler), we are getting so many errors with no... (2 Replies)
To make a programming language you need a compiler, so what was the first programming language and how was is created if you need the compiler first?
The compiler itself is considered as a high language comparing to the machine! since the compiler is not created in 1's and 0's...
Eventhough i... (12 Replies)
Hi,
I am using GNU unix. And running a bash shell. Can anyone please tell me what is the command for changing the color of the compiler error/warning messages on the console. I think it is in .bashrc and do not know how.
Thanks
Pink (0 Replies)
Hi,
I am using GNU unix. And running a bash shell. Can anyone please tell me what is the command for changing the color of the compiler error/warning messages on the console. I think it is in .bashrc and do not know how.
Thanks
Pink (1 Reply)
Hi All,
Will some one kindly explian below ?
selinux
What is the effect of installing a server using this kickstart option as follows:
selinux --enforcing
and
selinux --disabled (1 Reply)
Situation: installed on Centos6.4 this samba4 package
samba4-4.0.1-4.centos6.1.x86_64(wich had the path /usr/share/samba4 /var/lock/samba4,etc)
I use selinux so i put in context
/var/lock/samba4 -d system_u:object_r:samba_var_t:s0
/var/lock/samba4/.* -- ... (3 Replies)
Hi,
in /etc/httpd/conf/httpd.conf
#DocumentRoot "/var/www/html"
DocumentRoot "/home/phpmy/html"
when I restarted httpd
# /etc/init.d/httpd restart
Stopping httpd:
Starting httpd: Syntax error on line 293 of /etc/httpd/conf/httpd.conf:... (0 Replies)
If its possible to apply SELinux policies to unix device files, would that be a problem?
I would like to apply a policy to a process and enforce what it can communicate with device-wise (eg. physical network interface port) based on that policy.
Would think that the "selinux-policy-mls" tool... (0 Replies)
01-04-2009
