[DSE-Dev] Bug#962842: not a policy bug
Russell Coker
russell at coker.com.au
Sun Sep 18 02:42:46 BST 2022
close 962842
thanks
Apache has always been allowed to connect to mysql, usually with a boolean
controlling it.
In this case MariaDB is mislabeled, run "ps axZ|grep maria" and you will see
it's in the wrong context, run "ls -lZ /usr/sbin/mariadbd" and you will
probably find it doesn't have the type mysqld_exec_t.
It could be that at the time this bug report was filed the policy didn't have
the correct label for /usr/sbin/mariadbd, but that was fixed years ago.
For this class of problem the correct solution is to relabel the file. See
semanage-fcontext(8) and chcon(1) for details.
--
My Main Blog http://etbe.coker.com.au/
My Documents Blog http://doc.coker.com.au/
More information about the SELinux-devel
mailing list