valentin/ocanary-setup
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

-

Browse Source
This commit is contained in:
valentin 2021-11-10 12:27:08 +01:00
parent d9c5b06ab7
commit 2168f0bbcc
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
ocanary-setup.sh
View File

@ -121,8 +121,8 @@ sudo semanage port -a -t ssh_port_t -p tcp 2222
# Change opencanaryd file type to a 'bin_t' type. Will ensure that the file type does not trisition to a confined domain
# Without this instruction, SELinux will block many actions
echo "Adding rules for SELinux to let opencanaryd service run..."
#sudo chcon -t bin_t /var/lib/canary-env/bin/opencanaryd
sudo semanage fcontext -a -t bin_t /var/lib/canary-env/bin/opencanaryd
sudo chcon -t bin_t /var/lib/canary-env/bin/opencanaryd
#sudo semanage fcontext -a -t bin_t /var/lib/canary-env/bin/opencanaryd
echo "Setting SELinux to permisive - IMPORTANT - This action must be removed for production"
# ----- TODO Change this setting -----