Looking for SELinux advice regarding samba, apache
Paul Howarth
paul at city-fan.org
Mon Mar 22 09:18:48 UTC 2010
On 21/03/10 16:21, Toby Ovod-Everett wrote:
> Now on to the "what broke" question. Somewhere in the last two months (it's
> been a while since I've added photos), I lost the ability to use Samba to
> access /data/photos. Generally I access it through a symlink in my homedir:
> lrwxrwxrwx. 1 toby toby 12 2008-11-28 15:05 photos -> /data/photos
>
> This has stopped working. Things I tried:
> * Verifying symlinks. I have Mail -> mail in my homedir and that still works.
> * Verifying SELinux settings conform to above model.
> * Creating a separate share for /data/photos. This worked.
>
> I Obviously have a workaround now, but as a solution it's annoying, because it
> requires me to create separate shares for all of the things I want to access
> from my Windows machine (/data/photos, /var/www/cgi-bin/photos, and
> /var/www/html/public_html/toby) and then map to them all separately on my
> Windows machine on separate drive letters, instead of having a single share
> that accesses everything.
In your samba config, do you have any settings for:
unix extentions
follow symlinks
wide links
I believe you need the following to be able to follow symlinks outside
of the directory tree that is shared using samba:
unix extensions = no
follow symlinks = yes
wide links = yes
Paul.
More information about the selinux
mailing list