[MCOL-3849] Document Current Steps For Customers To Activate SELinux With Columnstore Created: 2020-02-28  Updated: 2020-07-22  Resolved: 2020-07-22

Status: Closed
Project: MariaDB ColumnStore
Component/s: Documentation
Affects Version/s: None
Fix Version/s: N/A

Type: Task Priority: Minor
Reporter: Todd Stoffel (Inactive) Assignee: Geoff Montee (Inactive)
Resolution: Fixed Votes: 0
Labels: None


 Description   

Currently we do not provide an SELinux policy as part of our distribution but a policy can be generated by the customer themselves very easily.

The steps include:

1. Setting SELinux to "PERMISSIVE"
2. Installing Columnstore as normal
3. Use the Audit2Allow utility which is included in the policycoreutils-python package to convert the audit.log to a policy.
4. Additional documentation here: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/security-enhanced_linux/sect-security-enhanced_linux-fixing_problems-allowing_access_audit2allow

 Comments   
Comment by Jacob Moorman (Inactive) [ 2020-07-22 ]

GeoffMontee Please pick this up as part of X5 closeout.

Comment by Geoff Montee (Inactive) [ 2020-07-22 ]

We've had this for quite a while. I guess we forgot to close the related Jira issue.

For example:

1. Setting SELinux to "PERMISSIVE"

That's here:

https://mariadb.com/docs/deploy/enterprise-single-columnstore/#selinux-preparation

3. Use the Audit2Allow utility which is included in the policycoreutils-python package to convert the audit.log to a policy.

That's here:

https://mariadb.com/docs/deploy/enterprise-single-columnstore/#selinux-configuration

Generated at Thu Feb 08 02:45:54 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.