Monday, June 9, 2008

SELinux Administration - Make ssh connection fast

Recently, I changed the operating system of my Linux machine from Fedora Core 3 to 9. Since that change I have faced several problems. One strange thing is too slow ssh connection. I thought that it might be related to firewall setting. So I turned off all firewall configurations by 'iptables -F' command but nothing changed. Eventually I found that the anwser is in SELinux setting.
There is a GUI-based system management tool called 'SELinux Management' in System->Administration menu. With clicking the Boolean tab in the left side many marked or unmarked policies appear. There are two ssh-related policies: allow_ssh_keysign and ssh_sysadm_login. I am not sure what these policies exactly do but ssh connection becomes faster after setting both policies. We can also change these values
shell# setsebool -P allow_ssh_keysign=1
shell# setsebool -P ssh_sysadm_login=1
Posted by at
Labels:

1 comment:

Android app development said...

I like your blog application.This is one of the pleasurable post.Nice to read about your post.
Android app developer

February 23, 2012 at 2:45 AM

Post a Comment

Subscribe to: Post Comments (Atom)