selinux/dirsrv-admin.if | 1 +
1 file changed, 1 insertion(+)
New commits:
commit b3132a7803d27b36408735ee7916bceed5ed3104
Author: Nathan Kinder <nkinder(a)redhat.com>
Date: Mon Jan 18 13:48:36 2010 -0800
Allow httpd to write user tmp files.
The selinux policy needed to be updated to allow httpd to write
to a user_tmp_t file. It needs to do this to write the setup log
file at the end of the setup process.
diff --git a/selinux/dirsrv-admin.if b/selinux/dirsrv-admin.if
index 3b0cb7e..36f610c 100644
--- a/selinux/dirsrv-admin.if
+++ b/selinux/dirsrv-admin.if
@@ -25,6 +25,7 @@ interface(`dirsrvadmin_extend_httpd',`
files_exec_usr_files(httpd_t)
files_manage_generic_tmp_files(httpd_t)
+ userdom_rw_user_tmp_files(httpd_t)
corenet_tcp_connect_generic_port(httpd_t)
# Strict policy
Show replies by thread