Re: SELinux and Squid - Non-default squid http_port (!=3128)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: SELinux and Squid - Non-default squid http_port (!=3128)
From: Rahul Sundaram <sundaram@xxxxxxxxxx>
Date: Sun, 28 Aug 2005 07:42:34 +0530
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]> <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050512 Red Hat/1.7.8-1.1.3.1

Øyvind Stegard wrote:

Thomas Springer wrote:
Try this:

# /usr/bin/system-config-securitylevel
This box is headless, so I can't use graphical configuration tools.(can't get SSH X forwarding to work, either..)
Find panel SELinux and change 'squid_allow_any' in category /Others.
I ended up using 'setsebool', and set the key 'squid_disable_trans' toTRUE. What does this mean, disable domain transition, in SELinux lingo? It works, at least. Haven't tried altering 'squid_allow_any'.

This would completely disable SELinux protection for squid.squid_allow_any boolean is better. You can get SSH X forwarding byreading the release notes


http://fedora.redhat.com/docs/release-notes/fc4/#id2503227

You can also use /etc/selinux/targeted/booleans to set SELinux booleans.setsebool would only do that for the current session



regards
Rahul

Follow-Ups:
- Re: SELinux and Squid - Non-default squid http_port (!=3128)
  - From: Øyvind Stegard

References:
- SELinux and Squid - Non-default squid http_port (!=3128)
  - From: Øyvind Stegard
- Re: SELinux and Squid - Non-default squid http_port (!=3128)
  - From: Thomas Springer
- Re: SELinux and Squid - Non-default squid http_port (!=3128)
  - From: Øyvind Stegard

Prev by Date: Re: ATI propriety driver: no 3D
Next by Date: PCAnywhere in Linux
Previous by thread: Re: SELinux and Squid - Non-default squid http_port (!=3128)
Next by thread: Re: SELinux and Squid - Non-default squid http_port (!=3128)
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]