mirrors/caddy-website
1
0
Fork 0
mirror of https://github.com/caddyserver/website.git synced 2025-04-21 12:36:16 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

docs: selinux considerations

Browse source
This commit is contained in:
elmø 2023-08-14 20:01:05 +02:00
parent 92e1533c67
commit 0dabed56e5
1 changed files with 14 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

12
src/docs/markdown/running.md
View file

@ -7,17 +7,16 @@ title: Keep Caddy Running
While Caddy can be run directly with its [command line interface](/docs/command-line), there are numerous advantages to using a service manager to keep it running, such as ensuring it starts automatically when the system reboots and to capture stdout/stderr logs.
- [Keep Caddy Running](#keep-caddy-running)
- [Linux Service](#linux-service)
- [Linux Service](#linux-service)
- [Unit Files](#unit-files)
- [Manual Installation](#manual-installation)
- [Using the Service](#using-the-service)
- [Overrides](#overrides)
- [SELinux System Considerations](#selinux-system-considerations)
- [Windows service](#windows-service)
- [Windows service](#windows-service)
- [sc.exe](#scexe)
- [WinSW](#winsw)
- [Docker Compose](#docker-compose)
- [Docker Compose](#docker-compose)
- [Setup](#setup)
- [Usage](#usage)
@ -156,7 +155,7 @@ RestartSec=5s
Then, save the file and exit the text editor, and restart the service for it to take effect:
<pre><code class="cmd bash">sudo systemctl restart caddy</code></pre>
### SELinux System Considerations
### SELinux Considerations
On SELinux enabled systems you have two options:
1. Install Caddy using the [COPR repo](https://copr.fedorainfracloud.org/coprs/g/caddy/caddy/). Your systemd file and caddy binary will be created and labelled correctly. If you wish to use a custom build of Caddy, you'll need to label the executable as described below.
@ -167,8 +166,7 @@ Systemd unit files and their executables will not be run unless labelled with `s
The `systemd_unit_file_t` is automatically applied to files created in `/etc/systemd/...`, so be sure to create your `caddy.service` file there.
To tag the caddy binary, you can use the following commands:
<pre><code class="cmd bash">semanage fcontext -a -t bin_t /usr/bin/caddy
restorecon -Rv /usr/bin/caddy
<pre><code class="cmd bash">semanage fcontext -a -t bin_t /usr/bin/caddy && restorecon -Rv /usr/bin/caddy
</code></pre>
## Windows service