Tag: selinux

MariaDB fails to start after snapshot restore on Vultr

I had to restore from snapshot, because JetPack messed up my WordPress installation. Unfortunately, after the restore my website looked like this: Error establishing a database connection Gee, that’s nice. What’s up with the DB engine? [[email protected] ~]# systemctl status mariadb.service ● mariadb.service – MariaDB 10.3.9 database server Loaded: loaded (/usr/lib/systemd/system/mariadb.service; enabled; vendor preset: disabled) […]

Installing GitBucket with PostgreSQL and Tomcat on CentOS 7

Preamble When it comes to on-premises Git hosting, GitBucket is definitely my current favorite. It has monthly updates, LDAP authentication, email notifications, forks, wikis, issues, pull requests, inline commenting, public and private repos, plugins, skins, protected branches, HTTP and SSH transports… you name it, man. I’ve already sent a few patches to its current maintainer, […]

Silent SELinux denies on CentOS

You do something, and it won’t work. In this example it’s Tomcat trying to delete a file. You already wrote an SELinux module to allow reads, but now you need to delete as well. So then you resort to the audit logs again. But there’s nothing in there. Then you put the tomcat_t domain under […]

CentOS 7 done right on Linode

Linode Account Sign up to Linode. You’ll have to top up your account with at least $5 and your account will be manually reviewed, too. To me it took around 40 minutes, so it’s a good opportunity to set up our SSH keys till then. SSH Keypair In layman’s terms, key-based authentication is a bunch […]

SELinux woes with Tomcat on CentOS 7.4

Preamble After the SELinux Crash Course it’s time to put that knowledge to good use. Keep that article open coz I’ll reference it continuously. If you haven’t read that one yet, make sure you do before proceeding here. It’s totally to-the-point, I promise. So anyway, even though the RHEL 7.4 release notes still fail to […]

SELinux Crash Course

Let’s start by stating I’m by no means an SELinux expert, but after the CentOS 7.4 upgrade hurdle I sure am more informed than I was with 7.3. So SELinux is a security mechanism that has a bunch of policies to allow stuff to happen. Anything not included in those policies will be blocked from […]