I am running Fedora Server 28 for ARM on my Raspberry and during the installation of Pi-Hole I got a warning message about SELinux being set to 'Enforced' and that because of it I cannot use Pi-Hole's admin page.
That is indeed the case, http://pi.hole/ returns a blank page, and without disabling SELinux / setting it to permissive on /etc/sysconfig/selinux Pi-Hole does not work at all.
The question is, how do I create a policy that allows Pi-Hole to work as intended while having Enforced status on?
Thank you.
EDIT:
start with the default policy, run in permissive to see what needs to be fixed. Then modify your policies to fix potential problems. Then restart strict enforcing.
grep hole /var/log/audit/audit.log outputs many comm="php-cgi" and comm="dnsmasq" denials.
Could this solve my problem?
grep hole /var/log/audit/audit.log | audit2allow -M mypolicy ******************** IMPORTANT *********************** To make this policy package active, execute: # /usr/sbin/semodule -i mypolicy.pp