October 30, 2014 02:05PM
That's the thing, I've never needed to set an SELinux policy. These are single purpose servers, they run Nginx and that's it. I've always installed Nginx, configured the .conf files for Nginx, and off it went. I've never needed to disable SELinux and actually, since I perform a minimal install of SELinux, the policy control tools aren't even installed.

If it were a policy issue, why doesn't a restorecon -v -R fix it? Why would upgrading from CentOS 6.5 to 6.6 break a policy that I never touched? And lastly, why wouldn't an uninstall and reinstall of the Nginx package fix it?

I'm genuinely stumped.

FWIW, it looks like the files that I created have a different security context than the files that Nginx drops:

ls -lZ /etc/nginx/conf.d

-rw-r--r--. root root system_u:object_r:httpd_config_t:s0 default.conf
-rw-r--r--. root root unconfined_u:object_r:httpd_config_t:s0 default.conf.orig
-rw-r--r--. root root unconfined_u:object_r:httpd_config_t:s0 dev-ls.conf
-rw-r--r--. root root unconfined_u:object_r:httpd_config_t:s0 dev-web.conf
-rw-r--r--. root root system_u:object_r:httpd_config_t:s0 example_ssl.conf
-rw-r--r--. root root unconfined_u:object_r:httpd_config_t:s0 example_ssl.conf.orig

The reason I am posting here as well as the CentOS forums, is that we upgraded our entire development environment to 6.6 and the only 3rd party program that is having issues is Nginx. Our Java servers are fine, mail daemons, monitoring servers, etc.
Subject Author Posted

CentOS 6.6, SELinux breaks Nginx 1.6.0

mevans336 October 30, 2014 10:48AM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

dewanggaba October 30, 2014 01:16PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

mevans336 October 30, 2014 02:05PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

dewanggaba October 30, 2014 02:26PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

mevans336 October 30, 2014 02:59PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

richardm October 30, 2014 04:18PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

mevans336 October 31, 2014 11:10AM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

bdwyertech October 31, 2014 01:48PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

bdwyertech October 31, 2014 01:51PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

richardm November 01, 2014 12:47PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

mevans336 November 02, 2014 01:36PM

Re: CentOS 6.6, SELinux breaks Nginx 1.6.0

richardm November 01, 2014 12:57PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 106
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready