Conflict with SELinux

datverse · Apr 6, 2025

Hi,
We are very concerned about SELinux. We have been deploying SELinux on all our Linux Servers. When we started deploying OpenLiteSpeed in general, we encountered a conflict. We had to disable SELinux to make OpenLiteSpeed work. Please help us resolve this issue.

ps auxZ | grep litespeed

Got:

unconfined_service_t

Reference link:
https://github.com/aws/amazon-ssm-agent-selinux

Thanks

Cold-Egg · Apr 7, 2025

Hi, I launched a fresh AlmaLinux with SELinux enabled, and no such issue. Maybe the amazon-ssm-agent-selinux package has its own custom policy rules that are not compatible with OLS? You might want to generate a custom policy for the OLS process based on the existing policy.

datverse · Apr 7, 2025

Hi @Cold-Egg,
Thank you for your reply and testing. To be clearer about this Issue, I reproduce the error:

1. Environment: AlmaLinux 8.10
2. Run command: ps auxZ | grep litespeed
3. I get the error: unconfined_service_t

** amazon-ssm-agent-selinux is what I sent for us to refer to how they do. My environment where the error occurs does not use amazon-ssm-agent-selinux.

** How do you configure and create a separate policy for OLS with SELinux to avoid errors and install successfully?

Thank you.

Cold-Egg · Tuesday at 2:10 AM

I launched AlmaLinux 9 from DigitalOcean and used the default SELinux settings and it works out of box.

Conflict with SELinux

datverse

New Member

Cold-Egg

Administrator

datverse

New Member

Cold-Egg

Administrator