mailman cgi-bin denied search
Tim Fenn
fenn at stanford.edu
Wed Oct 19 08:05:02 UTC 2005
I recently installed mailman on my FC3 box (using the redhat based
RPMs), and it seems to be working just fine, except for the numerous
avc messages it cranks out whenever I run one of the cgi scripts
associated with mailman (e.g. via the web interface):
Oct 19 00:34:21 agora kernel: audit(1129707261.236:212): avc: denied
{ search } for pid=18761 comm="listinfo" name="run" dev=sda1
ino=1294372 scontext=root:system_r:mailman_cgi_t tcontext=system_
u:object_r:var_run_t tclass=dir
I have selinux-policy-targeted-1.17.30-3.16, and
# getsebool httpd_enable_cgi
httpd_enable_cgi --> active
# getsebool httpd_enable_homedirs
httpd_enable_homedirs --> active
# getsebool httpd_ssi_exec
httpd_ssi_exec --> active
# getsebool httpd_builtin_scripting
httpd_builtin_scripting --> active
# getsebool httpd_unified
httpd_unified --> active
set, is there something I'm missing?
Thanks for any help,
Tim
More information about the selinux
mailing list