When I checked the directory "/var/VRTSvcs/log/tmp/"
Code:
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-1
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-0
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-8
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-7
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-6
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-5
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-4
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-3
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-2
-rw-------. 1 root root 0 Aug 22 05:42 IPMultiNIC-9
I couldn't find any problem. One small observation that I could make is that in this problematic server file permission have a "." at end of each file permission "-rw-------." which is not there in any other server.
Thanks in advance.
//BR
Last edited by Franklin52; 10-12-2015 at 10:53 AM..
Reason: Please use code tags
That . (dot) at the end of the display of the discretionary access control (DAC) permissions means that the file has SELinux security context.
You may display the mandatory access control (MAC) permissions of SELinux by using the -Z (capital Z) as in ls -Z
The issue you are experiencing is due to the label context of application ip with SELinux security label context of ifconfig_t trying to write to files /var/VRTSvcs/log/tmp/IPMultiNIC-* with SELinux security label context of var_t. This is exactly what SELinux is supposed to do; deny access to mismatched targets. You might need to investigate a bit about SELinux if you what to fix it.
Can you help me fixing the issue by making the permission in problematic server same as healthy server.
Thanks in advance.
//BR
The issue has been dealt away in your "healthy server" by disabling SeLinux, completely. New files created after that, do not get any SELinux file context and that's why they show without a . (dot) at the end of the normal Linux permissions and a ? shows instead of the SElinux context.
Security is not convenient and unfortunately it is easier to choose the path of less resistance; in this case disabling SELinux, instead of learning the way that it could be an asset to secure the server.
---------- Post updated 10-15-15 at 08:44 AM ---------- Previous update was 10-14-15 at 10:35 AM ----------
Test this solution based on what you have posted so far.
Install policycoreutils-python if you do not have it yet, from the official repository (it is not installed by default with rhel). This package contains semanage which you'll need to manage SELinux.
Then try:
Code:
semanage fcontext -a -t tmp_t "/var/VRTSvcs/log/tmp(/.*)?"
restorecon -Rv /var/VRTSvcs/log/tmp
That would set anything in /var/VRTSvcs/log/tmp to have a file context of tmp_t which is one of the file context that the process ifconfig_t type is allow to use.
Last edited by Aia; 10-15-2015 at 12:13 PM..
Reason: corrects grammar
I have built a website and I can access and edit the website'files on server via the root user. The current file and directory structures are not changeable. Now I am hiring a webpage designer to help me re-design some pages, I am going to let the designer edit the files directly on the server. So... (5 Replies)
Hello friends,
I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (7 Replies)
Hello friends,
I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (2 Replies)
I created a user so that when he logs in he will be directed to a menu
/etc/passwd
user1:x:115:1:Support -SysAd:/export/home/user1:/export/home/suppotrmenu/script.sh
However when I logged in remotely from another server by ssh user1@1.1.1.1 , it saysexport/home/suppotrmenu/script.sh:... (4 Replies)
Hi guys im new to this db
i have a small prob while installing websphereportal6.1i think i was installed succesfully
but the error im getting is while starting server.
check this out
# ./serverStatus.sh -all
Error loading: /usr/wps61/AppServer/java/jre/bin/classic/libjvm.so: cannot... (1 Reply)
I would like to copy data from local mechine to cluster. Basically, I typed
scp -r DVD/ acount@cluster:/
it shows Permission denied.
Could anyone please give me a clue to write permission on cluster, please?
The poperty of where on cluster I'd like to put is drwxr-xr-x
Any idea would... (1 Reply)
I'll start off by saying that I know very little about Unix - however, I do know that I have a .profile file in my home directory, and that I should be able to invoke it by typing . profile. However, when I do this for ANY .filename, I get ".: Permission denied". I'm pretty sure that there is... (12 Replies)
Hi,
I can not execute a .env file
$ . /Data/oracle/d03/mydbora/8.0.6/MYDB.env
-bash: /Data/oracle/d03/mydbora/8.0.6/MYDB.env: Permission denied
Even if :
-rwxrwxrwx 1 oracle dba 2903 Mar 5 2007 /Data/oracle/d03/mydbora/8.0.6/MYDB.env
Please help.
Many thanks. (1 Reply)
I just started computer science at UW Milwaukee. When I access the university Solaris system from PuTTY, I get permission denied when I try to access the file I wrote. Now I really have no idea what I'm doing, I just don't understand why I get permission denied in my won directory. Thank You
... (0 Replies)
i'm trying to set up my internet connection and i was told i need to edit the file
/etc/ppp/pap-secrets
but i get a permission denied message...why?? (6 Replies)
