Unable to start Bind on a fresh RHEL 8.6 system with enforcing SELinux
Michał Kępień
michal at isc.org
Mon Jun 13 20:04:05 UTC 2022
Søren,
> On a fresh install the selinux context are 'var_t', and if I changed it to 'named_var_run_t' it works!
This is the suspicious part for me. How did you install the packages?
The only supported way is the one that is documented [1]:
dnf install isc-bind
That pulls in the SCL metapackage which sets up SELinux file context
equivalency rules [2] and relieves you from having to apply any sort of
manual SELinux context tweaks.
My guess is that you installed one of the "individual" packages
directly, e.g. "dnf install isc-bind-bind". Please be aware that if the
SELinux contexts are not set up by the metapackage, you may run into
other similar issues in the future.
[1] https://copr.fedorainfracloud.org/coprs/isc/bind/
[2] https://gitlab.isc.org/isc-packages/rpms/isc-bind/-/blob/7b525a31c2bd9b51c10b2ed2aca8d5244221f359/isc-bind.spec#L77
--
Best regards,
Michał Kępień
More information about the bind-users
mailing list