<div dir="ltr">Thanks for your reply, Justin.<br><br>I just changed the line `SELINUX=enforcing` to `SELINUX=permissive` and reboot the system.<br><br>After reboot, I checked `getenforce` and it returned `permissive`.<br><br> But still I cannot ssh to the machine remotely...<br>After each try with a correct password, /var/log/message doesn't grow but /var/log/audit/audit.log grows with one line.<br>If I tried with an incorrect password, neither of the two log files changed.<br> <br><br>Hong<br><br><div class="gmail_quote">On Sat, Sep 6, 2008 at 10:18 PM, Justin P. Mattock <span dir="ltr"><<a href="mailto:justinmattock@gmail.com">justinmattock@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> I know this might sound stupid, but<br> Check and make sure /etc/selinux/config is in permissive<br> As well. I.g. A few months ago I couldn't boot, because of having that file In enforcing.<br> <br> justin P. Mattock<div><div></div><div class="Wj3C7c"><br> <br> <br> <br> On Sep 6, 2008, at 5:36 PM, Hong <<a href="mailto:kindloaf@gmail.com" target="_blank">kindloaf@gmail.com</a>> wrote:<br> <br> </div></div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div class="Wj3C7c"> Hi,<br> <br> I downloaded the source of refpolicy in Hardy.  (`apt-get source refpolicy`).  I compiled the policy and loaded it.  And then I reboot the system with PERMISSIVE mode.  (add `enforcing=0` in the kernel options when booting)<br> <br> Now I cannot login the system remotely using ssh.  Note that the system is in PERMISSIVE mode! (`getenforce` returns `Permissive`).  Everytime I tried `ssh my_host_name` and enter the correct password, the client side shows<br> "Read from remote host my_host_name: Connection reset by peer<br> Connection to my_host_name."<br> <br> And after each unsuccessful login, the /var/log/audit/audit.log file on the server   added a line:<br> "type=ANOM_ABEND msg=audit(1220746818.492:93): audit=4294967295 uid=1000 gid=1000 subj=system_u:system_r:sysadm_t pid=4713 comm="sshd" sig=6"<br> <br> By the way, when I use `make load` to load the policy, there is a one-line error message<br> '[19691.816572] secuirty; context system-u;system-r;sysadm-mail-t is invalid'<br> <br> I am not quite familiar with the messages.  Can anyone help me to see what's going?<br> <br> <br> Thanks,<br> Hong<br> <br> <br></div></div> _______________________________________________<br> refpolicy mailing list<br> <a href="mailto:refpolicy@oss.tresys.com" target="_blank">refpolicy@oss.tresys.com</a><br> <a href="http://oss.tresys.com/mailman/listinfo/refpolicy" target="_blank">http://oss.tresys.com/mailman/listinfo/refpolicy</a><br> </blockquote> </blockquote></div><br></div>