• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

Issue SElinux is still disabled

Dork

Dork

Regular Pleskian
Server operating system version
CentOS Linux 7.9.2009
Plesk version and microupdate number
Plesk Obsidian Version 18.0.53 Update #2
I changed the entry of /etc/selinux/config
from
SELINUX=permissive
to
SELINUX=enforcing
saved the file and restarted the server, but SELinux is still disabled.
 
Have you tried to run
# setenforce 1
?

What is the output of
# sestatus
after doing that?
 
Could you please provide the complete content of your /etc/selinux/config file? I am asking, because SELinux is straight forward to configure, and if it is set to enforcing in that file correctly, after a reboot it must work. I would not know any other way or why it does not work. You can still check your syslog if there are error messages related to SELinux, but probably something is wrong with the configuration file or with the SELinux installation in general.
 
Peter Debik said:
Could you please provide the complete content of your /etc/selinux/config file? I am asking, because SELinux is straight forward to configure, and if it is set to enforcing in that file correctly, after a reboot it must work. I would not know any other way or why it does not work. You can still check your syslog if there are error messages related to SELinux, but probably something is wrong with the configuration file or with the SELinux installation in general.
Click to expand...
# This file controls the state of SELinux on the system.
SELINUX=enabled
# SELINUX=permissive
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of three values:
# targeted - Targeted processes are protected,
# minimum - Modification of targeted policy. Only selected processes are protected.
# mls - Multi Level Security protection.
SELINUXTYPE=targeted
 
Dork said:
# This file controls the state of SELinux on the system.
SELINUX=enabled
# SELINUX=permissive
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of three values:
# targeted - Targeted processes are protected,
# minimum - Modification of targeted policy. Only selected processes are protected.
# mls - Multi Level Security protection.
SELINUXTYPE=targeted
Click to expand...
You've got the SELINUX varible set twice in the configuration file. Remove the first one: SELINUX=enabled, save file and reboot system.
 
That's weird. Are you running a VPS? The only other thing I can think of is that your provider is running a custom kernel that doesn't support SElinux. Contact them to find out if that's the case and if they can help you enable SElinux.
 
Last edited:
Kaspar said:
That's weird. Are running a VPS? The only other thing I can think of is that your provider is running a custom kernel that doesn't support SElinux. Contact them to find out if that's the case and if they can help you enable SElinux.
Click to expand...
Yes - it's a VPS
 
You must log in or register to reply here.

Similar threads

I
Issue Selinux-related errors in /var/log/messages
Replies
1
Views
369
Sebahat.hadzhi
Sebahat.hadzhi
Greg Sevastos
Issue SELinux Access Control Errors
Replies
2
Views
814
Greg Sevastos
Greg Sevastos
J
Issue SELinux blocking dovecot from writing to passwd.db
Replies
0
Views
806
John Calvert
J
I
Issue Selinux switches to permissive when updating modsecurity rules
Replies
10
Views
2K
ivanes82
I
V
Resolved Roundcube permission denied caused by SELinux
Replies
10
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top