PHP cannot connect to mysql server

Daniel J Walsh dwalsh at redhat.com
Thu Nov 11 11:08:25 UTC 2004 

dragoran wrote:

> no it sitill don't work... after a reboot i now get this messages in 
> demsg:
> audit(1100152360.021:0): avc:  denied  { write } for  pid=2635 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t tcontext=user_u:object_r:var_lib_t 
> tclass=sock_file
> audit(1100152677.098:0): avc:  denied  { append } for  pid=4078 
> exe=/usr/libexec/mysqld path=/var/log/mysqld.log dev=hda3 ino=765672 
> scontext=root:system_r:mysqld_t tcontext=system_u:object_r:var_log_t 
> tclass=file
> audit(1100152677.099:0): avc:  denied  { append } for  pid=4078 
> exe=/usr/libexec/mysqld path=/var/log/mysqld.log dev=hda3 ino=765672 
> scontext=root:system_r:mysqld_t tcontext=system_u:object_r:var_log_t 
> tclass=file
> audit(1100152682.751:0): avc:  denied  { write } for  pid=2636 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t 
> tcontext=root:object_r:mysqld_var_run_t tclass=sock_file
> audit(1100152683.427:0): avc:  denied  { write } for  pid=2636 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t 
> tcontext=root:object_r:mysqld_var_run_t tclass=sock_file
> audit(1100152683.978:0): avc:  denied  { write } for  pid=2636 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t 
> tcontext=root:object_r:mysqld_var_run_t tclass=sock_file
> audit(1100152755.278:0): avc:  denied  { write } for  pid=2637 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t 
> tcontext=root:object_r:mysqld_var_run_t tclass=sock_file
> audit(1100152756.063:0): avc:  denied  { write } for  pid=2637 
> exe=/usr/sbin/httpd name=mysql.sock dev=hda3 ino=309535 
> scontext=user_u:system_r:httpd_t 
> tcontext=root:object_r:mysqld_var_run_t tclass=sock_file
> mysql cannot access the log file and httpd still canncot connect to 
> the mysql socket ...
>
> -- 
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> http://www.redhat.com/mailman/listinfo/fedora-selinux-list

Looks like you have it mislabled.

Did you do a

rpm -q -l mysql  | restorecon -R -f -

????

The labels on a few files are wrong.

Dan

More information about the fedora-selinux-list mailing list