Comments on: How to Disable SELinux Temporarily or Permanently https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/ Tecmint - Linux Howtos, Tutorials, Guides, News, Tips and Tricks. Tue, 30 Jul 2024 03:36:56 +0000 hourly 1 By: JB https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/comment-page-1/#comment-2196481 Tue, 30 Jul 2024 03:36:56 +0000 http://www.tecmint.com/?p=21589#comment-2196481 In reply to Cliff.

SELinux is an abomination. It’s a set of cryptic commands with overlapping, inconsistent effects. Shut it off and hope for the day it gets replaced with something that is actually easy to use.

]]>
By: Cliff https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/comment-page-1/#comment-1970440 Wed, 22 Feb 2023 12:52:30 +0000 http://www.tecmint.com/?p=21589#comment-1970440 You should take this article and all like it down! You might as well tell your readers to remove their perimeter firewalls down, uninstall their Anti-Virus on Windows, etc.

SELinux is NOT that hard to use and configure. If fact, if you just follow some basic SELinux rules, like keeping all your web server content in /var/www you won’t have any issues.

If you are having an issue use the tools that are given like audit2why and audit2allow. Using audit2allow will fix 99.99999% of your SELinux issues. f you have lots of violations switch to permissive mode (better on a test Machine) and dig through the logs. That’s what competence administrators do!

Advising people to disable SELinux is as stupid as advising them to “just make the user a local administrator, and they will fix it.” on a Windows computer.

]]>
By: Ravi Saive https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/comment-page-1/#comment-1859428 Tue, 09 Aug 2022 05:13:06 +0000 http://www.tecmint.com/?p=21589#comment-1859428 In reply to Jim.

@Jim,

SELinux is not part of Debian-based distributions, you need to install it.

$ sudo apt install selinux selinux-utils selinux-basics auditd audispd-plugins
$ sudo sestatus
]]>
By: Jim https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/comment-page-1/#comment-1859139 Mon, 08 Aug 2022 17:18:39 +0000 http://www.tecmint.com/?p=21589#comment-1859139 Isn’t SELinux part of most distributions by default?

At least now in 2022, eh?

On vagrant VM, I get this for Ubuntu.

root@vagrant:~# cat /etc/os-release

NAME="Ubuntu"
VERSION="18.04.6 LTS (Bionic Beaver)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 18.04.6 LTS"
VERSION_ID="18.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=bionic
UBUNTU_CODENAME=bionic
root@vagrant:~# sestatus
-bash: sestatus: command not found

What package or repo is needed for SELinux?

]]>
By: Farhad https://www.tecmint.com/disable-selinux-in-centos-rhel-fedora/comment-page-1/#comment-1555440 Tue, 27 Jul 2021 07:59:36 +0000 http://www.tecmint.com/?p=21589#comment-1555440 When you change /etc/sysconfig/selinux, the SELINUX kernel module still will be loaded, just won’t enforce any policy anymore.

To prevent the whole module from loading we need to add “selinux=0” to the kernel parameters during boot time or execute this command and reboot the system:

$ sudo grubby --update-kernel ALL --args selinux=0
]]>