RedHat

But i find that in general when I setup a box I leave Selinux in permissive mode and then go threw the paces of connecting to every service i want running and all associated options so for example if you setup a website that makes use of scripts i would recommend you run them all and after completed and hopefully before you ever connect the box to the internet you run the steps below to create a policy module. I find that this has prevented me from having major issues and i get the benefits of Selinux.

To create a rule that pretty much allows all AVC denials:

An example of how to add SELECT privileges to a user using GRANT

GRANT SELECT ON projectdb.* TO user@'localhost' IDENTIFIED BY 'passwd';

If SELECT is not enough for our user we can add more privileges using a query similar to the one below:

An example of how to add a selection of privileges to a user using GRANT

GRANT SELECT, INSERT, DELETE ON projectdb.* TO user@'localhost' IDENTIFIED BY 'passwd';

If you want to GRANT ALL the privileges to a user then use this query:

An example of how to Grant Privileges in MySQL