Fedora Linux Support Community & Resources Center
Old 9th August 2017, 10:57 AM
ToddAndMargo Offline
Registered User
Join Date: Feb 2010
Posts: 636
I need a list of SELinux rules for bind-chroot

Hi All,

Would someone point me to a paper describing what SELinux rules I need to implement to use with bind-chroot?

Many thanks,
Reply With Quote
Old 12th August 2017, 06:34 PM
tryfedoraa Online
Registered User
Join Date: May 2017
Location: www
Posts: 127
Re: I need a list of SELinux rules for bind-chroot

SELinux Contexts

If you are running SELinux, run the following commands as root to set the correct SELinux contexts for the bind/ directory, and the named.conf, bind.log, rndc.conf, named-stats.log, and logging files:

chcon -t named_zone_t /var/named/chroot/etc/bind/
chcon -t named_zone_t /var/named/chroot/etc/named.conf
chcon -t named_cache_t /var/named/chroot/etc/bind/bind.log
chcon -t named_conf_t /var/named/chroot/etc/rndc.conf
chcon -t named_cache_t /var/named/chroot/etc/bind/named-stats.log
chcon -t named_zone_t /var/named/chroot/etc/bind/logging
Run the following command as root on each zone database file to set the correct SELinux context:

chcon -t named_zone_t <code>zone-database-name</code> <code>zone-database-name</code> <code>zone-database-name</code>
Reply With Quote

bindchroot , list , rules , selinux

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
without bind-chroot, SELinux refused named access to /dev/random timliim Using Fedora 0 10th January 2009 08:58 PM
selinux stopping zone update on secondary bind server (in chroot) blittle Security and Privacy 2 19th February 2008 03:44 PM
Missing Dependency: bind = 30:9.3.2-10.FC5 is needed by package bind-chroot comsparks Using Fedora 3 25th April 2006 05:55 AM

Current GMT-time: 18:35 (Tuesday, 17-10-2017)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat