Fedora 9在架設samba時比之前的版本還多了些問題,按照以前的方式設定好之後還是會有問題,顯示的錯誤訊息在"setroubleshoot browser"。

 

Summary:

 

SELinux is preventing the samba daemon from serving r/o local files to remote

clients.

 

Detailed Description:

 

SELinux has preventing the samba daemon (smbd) from reading files on the local

system. If you have not exported these file systems, this could signals an

intrusion.

 

Allowing Access:

 

If you want to export file systems using samba you need to turn on the

samba_export_all_ro boolean: "setsebool -P samba_export_all_ro=1".

 

Fix Command:

 

setsebool -P samba_export_all_ro=1

 

Additional Information:

 

Source Context                unconfined_u:system_r:smbd_t:s0

Target Context                system_u:object_r:user_home_dir_t:s0

Target Objects                ./flykof [ dir ]

Source                        smbd

Source Path                   /usr/sbin/smbd

Port                          <Unknown>

Host                          localhost.localdomain

Source RPM Packages           samba-3.2.0-1.pre3.9.fc9

Target RPM Packages           

Policy RPM                    selinux-policy-3.3.1-42.fc9

Selinux Enabled               True

Policy Type                   targeted

MLS Enabled                   True

Enforcing Mode                Enforcing

Plugin Name                   samba_export_all_ro

Host Name                     localhost.localdomain

Platform                      Linux localhost.localdomain 2.6.25-14.fc9.i686 #1

                              SMP Thu May 1 06:28:41 EDT 2008 i686 i686

Alert Count                   50

First Seen                    西元20100401 (週四) 134029

Last Seen                     西元20100401 (週四) 140358

Local ID                      90f2edff-491f-492f-a019-21fc2f83fe5b

Line Numbers                 

 

Raw Audit Messages           

 

host=localhost.localdomain type=AVC msg=audit(1270101838.926:118): avc:  denied  { read } for  pid=5095 comm="smbd" name="flykof" dev=dm-0 ino=7454722 scontext=unconfined_u:system_r:smbd_t:s0 tcontext=system_u:object_r:user_home_dir_t:s0 tclass=dir

 

host=localhost.localdomain type=SYSCALL msg=audit(1270101838.926:118): arch=40000003 syscall=5 success=no exit=-13 a0=b885e538 a1=98800 a2=2f a3=b885e4e8 items=0 ppid=5092 pid=5095 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=3 comm="smbd" exe="/usr/sbin/smbd" subj=unconfined_u:system_r:smbd_t:s0 key=(null)

 

 

解決的方法在錯誤訊息中也是有提到了,只需要執行

setsebool -P samba_export_all_ro=1

 

那在老九PHP空間BLOG也是有提到更詳細的解說,有需要的話可以去看看。

 


參考資料:

http://hi.baidu.com/%C0%CF%BE%C5php/blog/item/5205783dc3fa32e655e72361.html

arrow
arrow
    全站熱搜
    創作者介紹
    創作者 flykof 的頭像
    flykof

    十年磨一劍

    flykof 發表在 痞客邦 留言(0) 人氣()

    E-mail轉寄