[ovirt-users] selinux on oVirt Node

Simon Barrett Simon.Barrett at tradingscreen.com
Fri May 23 12:38:39 UTC 2014

I added "enforcing=0" to my pxe menu and re-installed the node. All looks better now.
# sestatus
SELinux status:                 enabled
SELinuxfs mount:                /selinux
Current mode:                   permissive
Mode from config file:          disabled
Policy version:                 24
Policy from config file:        targeted

# cat /selinux/enforce

Thanks for the information.


-----Original Message-----
From: users-bounces at ovirt.org [mailto:users-bounces at ovirt.org] On Behalf Of Sven Kieske
Sent: 23 May 2014 09:45
To: users at ovirt.org
Subject: Re: [ovirt-users] selinux on oVirt Node

afaik you need to disable selinux by passing the relevant parameter direct via kernel boot options.

search the ML or the net if you need the exact command line.


Am 23.05.2014 10:36, schrieb Simon Barrett:
> I set "SELINUX=disabled" in /etc/selinux/config and ran a "persist /etc/selinux/config".
> After the node reboots, the file has the correct "SELINUX=disabled" line but I see that selinux is still enabled:
> # grep ^SELINUX= /etc/selinux/config
> SELINUX=disabled
> # getenforce
> Enforcing
> # cat /selinux/enforce
> 1
> It's like the bind mounts for the files in config happen after selinux is setup.
> Is there something else I should be doing to make a change to selinux survive a node reboot?
> Many thanks,
> Simon

Mit freundlichen Grüßen / Regards

Sven Kieske

Mittwald CM Service GmbH & Co. KG
Königsberger Straße 6
32339 Espelkamp
T: +49-5772-293-100
F: +49-5772-293-333
Geschäftsführer: Robert Meyer
St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen
Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen _______________________________________________
Users mailing list
Users at ovirt.org

More information about the Users mailing list