[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How to save selinux setsebool configuration



On 07/03/2012 03:15 AM, 余水保 wrote:

On Mon, Jul 2, 2012 at 8:08 PM, Tristan Santore <tristan.santore@xxxxxxxxxxxxxxxxxxxxx> wrote:
On 02/07/12 13:06, 余水保 wrote:
> Hi friends,
> After change the selinux settings as:
>  setsebool httpd_can_network_connect on
> It works.   But when reboot,  the setings are lost.   Is there a way to
> save the configuration?
>
>
>
>
> --
> selinux mailing list
> selinux@xxxxxxxxxxxxxxxxxxxxxxx
> https://admin.fedoraproject.org/mailman/listinfo/selinux
A simple man setsebool would have shown you, that the -P argument does that.

Regards,
Tristan

--
Tristan Santore BSc MBCS
TS4523-RIPE
Network and Infrastructure Operations
InterNexusConnect
Mobile +44-78-55069812
Tristan.Santore@xxxxxxxxxxxxxxxxxxxxx

Former Thawte Notary
(Please note: Thawte has closed its WoT programme down,
and I am therefore no longer able to accredit trust)

For Fedora related issues, please email me at:
TSantore@xxxxxxxxxxxxxxxxx
--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux


Thank you, Tristan.   The simple answer surprises me,  and gives me a deep lesson .  I have tried "man setsebool"  without reading carefully,  because a misconception leads me  to find separate command to do that.  
As years-age MS windows engineer,   this shows that I  am  newbie to linux core value.





--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux
How Tristan wrote

-P ... persistent change

So you need

setsebool -P httpd_can_network_connect 1

--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux

[Fedora Users]     [Fedora Legacy]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite Photos]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

Powered by Linux

Google
  Web www.spinics.net