setbool

[leo amine]

hello everyone,
i wanted to change this parametre in sebool but i didn't find the line , however i followed all instructions in my exercise-book , i m blocked in this step .how can i add sftpd_enable_homedir . soemone can help me !
thanks

 

[JasKinasis]

I believe you need the togglesebool command:

togglesebool sftpd_enable_homedirs

That will toggle the status of the flag - enabling it if it’s disabled, or vice-versa!

Also, there is setsebool:

setsebool sftpd_enable_homedirs=1

Explicitly setting the value to 1 enables that Boolean. Setting it to 0 will disable it.

Note: You may need to use sudo with the above commands. I haven’t messed with selinux for a while!

 

[f33dm3bits]

Use -P to make it permanent to have it survive reboots.

setsebool -P tftp_home_dir  on/off(or 1/0)

 

[leo amine]

but the problem where is this line , maybe i didn t well explain it

 

[leo amine]

but the problem where is this line , maybe i didn t well explain it
View attachment 10421

 

[leo amine]

I believe you need the togglesebool command:

togglesebool sftpd_enable_homedirs

That will toggle the status of the flag - enabling it if it’s disabled, or vice-versa!

Also, there is setsebool:

setsebool sftpd_enable_homedirs=1

Explicitly setting the value to 1 enables that Boolean. Setting it to 0 will disable it.

Note: You may need to use sudo with the above commands. I haven’t messed with selinux for a while!

look at my second picture i don t have this line # sftpd_enable_homedirs#

 

[JasKinasis]

look at my second picture i don t have this line # sftpd_enable_homedirs#

You didn’t post your second picture until after a couple of us had answered your question.
This is Linux.org, it is not the psychic hotline and we are not mind-readers! Ha ha!

If sftpd’s options are not appearing it’s likely that you don’t have sftp installed and/or do not have it configured/running properly.

So perhaps check you have it installed first.
And if you do have it installed, the next step is to check that the service is configured properly and running.

I haven’t messed with sftp for a long time, so I’ve can’t remember everything that’s involved. But a quick search using your favourite search engine should allow you to find a tutorial for setting up sftpd!

 

[f33dm3bits]

but the problem where is this line , maybe i didn t well explain it
View attachment 10421

You made a typo:

setsebool sftpd_enable_homedirs=1

It should be:

setsebool -P tftp_home_dir=1 or setsebool -P tftp_home_dir 1

You can also list boo-leans like this.

semanage boolean -l

sftpd_enable_homedirs doesn't exist. Also you don't use randomly set an selinux boolean. You check the the audit.log file like this.

cat /var/log/audit/audit.log | audit2allow

Then it will provide you with some output for possible solutions, it will usually first recommend a specific boolean before anything else.

 

[leo amine]

You didn’t post your second picture until after a couple of us had answered your question.
This is Linux.org, it is not the psychic hotline and we are not mind-readers! Ha ha!

If sftpd’s options are not appearing it’s likely that you don’t have sftp installed and/or do not have it configured/running properly.

So perhaps check you have it installed first.
And if you do have it installed, the next step is to check that the service is configured properly and running.

I haven’t messed with sftp for a long time, so I’ve can’t remember everything that’s involved. But a quick search using your favourite search engine should allow you to find a tutorial for setting up sftpd!

thank you i will retry all steps you mentined.