nginx open() “***” failed (13: Permission denied) 问题排查

[root@ ~]# systemctl start nginx
Job for nginx.service failed because the control process exited with error code. See "systemctl status nginx.service" and "journalctl -xe" for details.
复制

[root@ ~]# systemctl status nginx
● nginx.service - The nginx HTTP and reverse proxy server
   Loaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since 三 2024-05-22 16:15:51 CST; 50s ago
  Process: 822 ExecStartPre=/usr/sbin/nginx -t (code=exited, status=1/FAILURE)
  Process: 814 ExecStartPre=/usr/bin/rm -f /run/nginx.pid (code=exited, status=0/SUCCESS)

5月 22 16:15:51 172-104-61-56 systemd[1]: Starting The nginx HTTP and reverse proxy server...
5月 22 16:15:51 172-104-61-56 nginx[822]: nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
5月 22 16:15:51 172-104-61-56 nginx[822]: nginx: [emerg] open() "/var/log/alist.log" failed (13: Permission denied)
5月 22 16:15:51 172-104-61-56 nginx[822]: nginx: configuration file /etc/nginx/nginx.conf test failed
5月 22 16:15:51 172-104-61-56 systemd[1]: nginx.service: control process exited, code=exited status=1
5月 22 16:15:51 172-104-61-56 systemd[1]: Failed to start The nginx HTTP and reverse proxy server.
5月 22 16:15:51 172-104-61-56 systemd[1]: Unit nginx.service entered failed state.
5月 22 16:15:51 172-104-61-56 systemd[1]: nginx.service failed.

复制

user  root;
worker_processes  1;

#error_log  logs/error.log;
#error_log  logs/error.log  notice;
#error_log  logs/error.log  info;

#pid        logs/nginx.pid;


events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;

    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';

    #access_log  logs/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    #keepalive_timeout  0;
    keepalive_timeout  65;

    #gzip  on;

    server {
        listen       80;
        server_name  localhost;
    
        charset utf-8;
    
        #access_log  logs/host.access.log  main;
    
        location / {
            root   /root/www/;          ## 设置的地方
            index  index.html index.htm;
        }
                #error_page  404              /404.html;
    
            # redirect server error pages to the static page /50x.html
            #
            error_page   500 502 503 504  /50x.html;
            location = /50x.html {
                root   html;
            }
    
            # proxy the PHP scripts to Apache listening on 127.0.0.1:80
            #
            #location ~ \.php$ {
            #    proxy_pass   http://127.0.0.1;
            #}
    
            # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
            #
            #location ~ \.php$ {
            #    root           html;
            #    fastcgi_pass   127.0.0.1:9000;
            #    fastcgi_index  index.php;
            #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
            #    include        fastcgi_params;
            #}
    
            # deny access to .htaccess files, if Apache's document root
            # concurs with nginx's one
            #
            #location ~ /\.ht {
            #    deny  all;
            #}
        }
}

[root@ ~]# getenforce
enforcing
#运行命令getenforce，验证SELinux状态。返回状态如果是enforcing，表明SELinux已开启。如上所示我的SELinux是开启的。
复制

[root@ ~]# setenforce 0
复制

vim /etc/selinux/config
复制