Issue With MariaDB-server

Home » CentOS » Issue With MariaDB-server
CentOS 2 Comments

Hi,

Today I have updated a CentOS 6.8 system that has MariaDB-server installed from http://yum.mariadb.org/5.5/CentOS6-amd64 and found that I had an SELinux issue. I know this is not really CentOS related, but thought I would check if anyone else on this list uses this repository and has also seen a problem ?

Using the information at https://wiki.CentOS.org/HowTos/SELinux I have created a local policy that seems to fix things

module marialocal 1.0;

require {
type mysqld_safe_t;
class capability { setuid setgid };
}

#============= mysqld_safe_t =============
allow mysqld_safe_t self:capability setgid;
allow mysqld_safe_t self:capability setuid;

My own research suggests this is reasonably safe, but does anyone see a reason why this shouldn’t be used ?

It may be useful to know that the particular rpms are MariaDB-server-5.5.54-1.el6.x86_64 and selinux-policy-3.7.19-292.el6_8.2.noarch.

Thanks for any feedback, and Happy New Year :)

2 thoughts on - Issue With MariaDB-server

  • Not really, but if you start this with systemd, using the service file Red Hat distributes, then it isn’t necessary because systemd will have already switched uid/gid to launch mysqld.