啟用了selinux,竟然tcpdump寫文件功能不能用了 默認安裝的FC4,啟用了selinux的. 今天想抓一下包, [root@cxf ~]# /usr/sbin/tcpdump -c 50 -w dump tcpdump: dump: Permission denied 這是在/root目錄,當然不存在權限問題, 於是 [root@cxf ~]# /usr/sbin/tcpdump -c 50 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes 17:23:45.000012 IP 218.6.140.228.1311 >; 192.168.6.12.3052: UDP, length 204 噫,這個卻可以用,什麼道理??? 但是不能寫文件不行呀,因為在遠程操作,顯示的大多是ssh的信息 啟用了selinux,竟然tcpdump寫文件功能不能用了 編譯/etc/selinux/config文件，設成disabled就可以了 啟用了selinux,竟然tcpdump寫文件功能不能用了 那豈不是要重啟動??? 有沒有其他辦法,分析下原因嘛 啟用了selinux,竟然tcpdump寫文件功能不能用了 那就man setsebool吧 啟用了selinux,竟然tcpdump寫文件功能不能用了 這麼多,我不知道該關閉哪個 [root@cxf ~]# getsebool -a NetworkManager_disable_trans -->; inactive allow_execmem -->; active allow_execmod -->; active allow_execstack -->; active allow_kerberos -->; active allow_write_xshm -->; inactive allow_ypbind -->; inactive apmd_disable_trans -->; inactive arpwatch_disable_trans -->; inactive auditd_disable_trans -->; inactive bluetooth_disable_trans -->; inactive canna_disable_trans -->; inactive cardmgr_disable_trans -->; inactive comsat_disable_trans -->; inactive cupsd_config_disable_trans -->; inactive cupsd_disable_trans -->; inactive cvs_disable_trans -->; inactive cyrus_disable_trans -->; inactive dbskkd_disable_trans -->; inactive dhcpc_disable_trans -->; inactive dhcpd_disable_trans -->; inactive dovecot_disable_trans -->; inactive fingerd_disable_trans -->; inactive ftp_home_dir -->; active ftpd_disable_trans -->; inactive ftpd_is_daemon -->; active hald_disable_trans -->; inactive hotplug_disable_trans -->; inactive howl_disable_trans -->; inactive httpd_builtin_scripting -->; active httpd_can_network_connect -->; inactive httpd_disable_trans -->; inactive httpd_enable_cgi -->; active httpd_enable_homedirs -->; active httpd_ssi_exec -->; active httpd_suexec_disable_trans -->; inactive httpd_tty_comm -->; inactive httpd_unified -->; active i18n_input_disable_trans -->; inactive inetd_child_disable_trans -->; inactive inetd_disable_trans -->; inactive innd_disable_trans -->; inactive kadmind_disable_trans -->; inactive klogd_disable_trans -->; inactive krb5kdc_disable_trans -->; inactive ktalkd_disable_trans -->; inactive lpd_disable_trans -->; inactive mysqld_disable_trans -->; inactive named_disable_trans -->; inactive named_write_master_zones -->; inactive nfs_export_all_ro -->; active nfs_export_all_rw -->; active nmbd_disable_trans -->; inactive nscd_disable_trans -->; inactive ntpd_disable_trans -->; inactive portmap_disable_trans -->; inactive postgresql_disable_trans -->; inactive pppd_disable_trans -->; inactive pppd_for_user -->; inactive privoxy_disable_trans -->; inactive ptal_disable_trans -->; inactive radiusd_disable_trans -->; inactive radvd_disable_trans -->; inactive read_default_t -->; active rlogind_disable_trans -->; inactive rsync_disable_trans -->; inactive samba_enable_home_dirs -->; inactive saslauthd_disable_trans -->; inactive slapd_disable_trans -->; inactive smbd_disable_trans -->; inactive snmpd_disable_trans -->; inactive squid_connect_any -->; inactive squid_disable_trans -->; inactive stunnel_disable_trans -->; inactive stunnel_is_daemon -->; inactive syslogd_disable_trans -->; inactive system_dbusd_disable_trans -->; inactive telnetd_disable_trans -->; inactive tftpd_disable_trans -->; inactive udev_disable_trans -->; inactive use_nfs_home_dirs -->; inactive use_samba_home_dirs -->; inactive uucpd_disable_trans -->; inactive winbind_disable_trans -->; inactive ypbind_disable_trans -->; inactive ypserv_disable_trans -->; inactive zebra_disable_trans -->; inactive [ 關閉窗口 ]