Fedora Linux Support Community & Resources Center
  #1  
Old 4th May 2012, 01:54 AM
gorogoren Offline
Registered User
 
Join Date: May 2012
Location: I hate gtk
Posts: 37
linuxfirefox
remove selinux...

Don't want disable it...I wanna to remove it...it's possible?

tia!
__________________
I hate gtk...
Reply With Quote
  #2  
Old 4th May 2012, 02:14 AM
tox
Guest
 
Posts: n/a
windows_7firefox
Re: remove selinux...

Quote:
Originally Posted by gorogoren View Post
Don't want disable it...I wanna to remove it...it's possible?

tia!
why do you wanna remove it? thats a bit like asking " i wanna remove my firewall." just disable it.
Reply With Quote
  #3  
Old 4th May 2012, 03:58 AM
hadrons123 Offline
'The Blue Dragon'
 
Join Date: Jan 2011
Location: Pitt,PA
Posts: 1,263
linuxfirefox
Re: remove selinux...

If you want it, you got it.

Quote:
yum remove selinux*
there you go.
__________________
LENOVO Y580 FHD Intel® Core™ i7-3630QM CPU @ 2.40GHz × 8 |660M GTX NVIDIA | 16 GB SSD
Reply With Quote
  #4  
Old 4th May 2012, 04:23 AM
gorogoren Offline
Registered User
 
Join Date: May 2012
Location: I hate gtk
Posts: 37
linuxfedorakonqueror
Re: remove selinux...

Thx homie!
__________________
I hate gtk...
Reply With Quote
  #5  
Old 4th May 2012, 05:12 AM
jpollard Online
Registered User
 
Join Date: Aug 2009
Location: Waldorf, Maryland
Posts: 6,878
linuxfirefox
Re: remove selinux...

Note: the kernel still has SELinux in there. And unless you compile a custom kernel it always will.
Reply With Quote
  #6  
Old 4th May 2012, 09:38 AM
Yellowman
Guest
 
Posts: n/a
linuxfirefox
Re: remove selinux...

Quote:
Originally Posted by hadrons123 View Post
If you want it, you got it.



there you go.
That doesn't remove all of it.



Code:
 rpm -qa *\selinux\*
libselinux-2.1.6-6.fc16.i686
libselinux-python-2.1.6-6.fc16.x86_64
selinux-policy-targeted-3.10.0-84.fc16.noarch
libselinux-2.1.6-6.fc16.x86_64
libselinux-devel-2.1.6-6.fc16.x86_64
libselinux-utils-2.1.6-6.fc16.x86_64
selinux-policy-3.10.0-84.fc16.noarch
Reply With Quote
  #7  
Old 4th May 2012, 04:02 PM
jpollard Online
Registered User
 
Join Date: Aug 2009
Location: Waldorf, Maryland
Posts: 6,878
linuxfirefox
Re: remove selinux...

Of course, the real question is: Why remove it?
Reply With Quote
  #8  
Old 4th May 2012, 04:24 PM
hadrons123 Offline
'The Blue Dragon'
 
Join Date: Jan 2011
Location: Pitt,PA
Posts: 1,263
linuxfirefox
Re: remove selinux...

@yellowman
I believe the OP wanted to remove the GUI alerts and annoyances that comes out of a default SElinux setup and my method would remove exactly that.

but as jpollard says you cannot remove all the libs unless you compile the kernel without SElinux.

but I am not sure how much it would affect the security of the kernel or the applications that depend on the SElinux API.
__________________
LENOVO Y580 FHD Intel® Core™ i7-3630QM CPU @ 2.40GHz × 8 |660M GTX NVIDIA | 16 GB SSD
Reply With Quote
  #9  
Old 4th May 2012, 06:14 PM
gorogoren Offline
Registered User
 
Join Date: May 2012
Location: I hate gtk
Posts: 37
unknownunknown
Re: remove selinux...

libselinux wants to remove almost the whole system!
__________________
I hate gtk...
Reply With Quote
  #10  
Old 4th May 2012, 06:32 PM
hadrons123 Offline
'The Blue Dragon'
 
Join Date: Jan 2011
Location: Pitt,PA
Posts: 1,263
windows_xp_2003chrome
Re: remove selinux...

Quote:
Originally Posted by gorogoren View Post
libselinux wants to remove almost the whole system!
I wouldn't go that far. Now I wonder why you want remove SElinux. Is there any advantage to be gained by removing SElinux?
__________________
LENOVO Y580 FHD Intel® Core™ i7-3630QM CPU @ 2.40GHz × 8 |660M GTX NVIDIA | 16 GB SSD
Reply With Quote
  #11  
Old 4th May 2012, 07:21 PM
gorogoren Offline
Registered User
 
Join Date: May 2012
Location: I hate gtk
Posts: 37
linuxfirefox
Re: remove selinux...

maybe U can help me pal...

2 things: how to speed up boot time and some tips to tweak the system for performance...
__________________
I hate gtk...
Reply With Quote
  #12  
Old 4th May 2012, 08:56 PM
jpollard Online
Registered User
 
Join Date: Aug 2009
Location: Waldorf, Maryland
Posts: 6,878
linuxfirefox
Re: remove selinux...

Quote:
Originally Posted by gorogoren View Post
libselinux wants to remove almost the whole system!
That is because a lot of the system uses the library. Removing the library would cause those services to fail...

SELinux adds only a few milliseconds to the boot time, mostly just to load the designated policy.
Reply With Quote
  #13  
Old 4th May 2012, 09:38 PM
hadrons123 Offline
'The Blue Dragon'
 
Join Date: Jan 2011
Location: Pitt,PA
Posts: 1,263
windows_xp_2003chrome
Re: remove selinux...

Quote:
Originally Posted by gorogoren View Post
maybe U can help me pal...

2 things: how to speed up boot time and some tips to tweak the system for performance...
Remove all the unwanted services by running system-config-services in terminal. read the man pages . might help a bit.
__________________
LENOVO Y580 FHD Intel® Core™ i7-3630QM CPU @ 2.40GHz × 8 |660M GTX NVIDIA | 16 GB SSD
Reply With Quote
  #14  
Old 6th May 2012, 05:03 AM
Magickman Offline
Registered User
 
Join Date: Oct 2008
Posts: 326
windows_7chrome
Re: remove selinux...

Just do what I do. Log in as root, got to /etc/selinux/config and change it from the default "Targeted" to "Permissive" and reboot.
Reply With Quote
  #15  
Old 6th May 2012, 10:54 AM
JuhaniJaakola Offline
Registered User
 
Join Date: Mar 2009
Posts: 74
linuxfirefox
Re: remove selinux...

I've been using Red Hat and Fedora for ages and I feel that I have never had anything but trouble from selinux. I have got false alarms, selinux broke ppp and updating the packages selinux-policy and selinux-policy-targeted slows updating my system to the latest packages. So this is what I did:

1. Change SELINUX=disabled in /etc/sysconfig/selinux

2. Execute yum erase selinux-policy selinux-policy-doc selinux-policy-devel selinux-policy-targeted

This frees 38 MB in Fedora 17 and makes "yum update" faster and saves you from false alarms. You can't remove libselinux because of the dependencies, but it is not necessary to get rid of the worst problems of selinux.

I strongly suggest that selinux should be disabled by default in Fedora.

---------- Post added at 11:54 AM ---------- Previous post was at 10:07 AM ----------

In fact file /etc/sysconfig/selinux belongs to package selinux-policy. So if you remove selinux-policy it will be gone, and there is no use in changing it. Just ignore step 1 and execute step 2 in my post above.

Boot after step 2 and check that selinux is disabled. You should see this:

$ dmesg | grep -i selinux
[ 0.001224] SELinux: Initializing.
[ 0.001278] SELinux: Starting in permissive mode
[ 0.493303] SELinux: Registering netfilter hooks
[ 3.143814] SELinux: Disabled at runtime.
[ 3.143916] SELinux: Unregistering netfilter hooks
[ 3.190100] type=1404 audit(1336290660.693:2): selinux=0 auid=4294967295 ses=4294967295

The key line is "Disabled at runtime".

Another check is this:

$ if selinuxenabled; then echo enabled; else echo disabled; fi
disabled

It uses command selinuxenabled, which is in package libselinux-utils. This package is harmless and does not have to be erased.

Yet another update on file /etc/sysconfig/selinux: File /etc/sysconfig/selinux belongs to package selinux-policy, so it disappears when your remove that package. But /etc/sysconfig/selinux is just a symlink to file /etc/selinux/config - so make sure that it contains line "SELINUX=disabled". By the way, file /etc/selinux/config does not belong to any package after you remove selinux-policy! So you should edit /etc/selinux/config first and then remove the packages.

Last edited by JuhaniJaakola; 6th May 2012 at 10:01 PM. Reason: Added information on file /etc/selinux/config
Reply With Quote
Reply

Tags
remove, selinux

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
selinux: hand tweaking policieand yum selinux-policy updates: overriden or perserved? mbiggerstaff Security and Privacy 2 20th January 2014 09:52 PM
Safe to remove packages selinux-policy and selinux-policy-targeted? JuhaniJaakola Using Fedora 1 30th December 2011 11:37 PM
Remove SELinux? tpprynn Security and Privacy 5 18th August 2011 10:20 PM
how to remove selinux? cryptic Using Fedora 16 8th December 2009 06:21 PM
how to remove icons form main menu while the remove item is grayed out (whoami = root alphonsebrown Using Fedora 4 25th March 2005 12:34 AM


Current GMT-time: 17:52 (Monday, 24-11-2014)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat
Cantel Photos on Instagram - Pio Photos on Instagram - Alhama de Murcia