apache problem?

Colin Walters walters at redhat.com
Fri Nov 5 17:46:31 UTC 2004


On Fri, 2004-11-05 at 07:37 -0500, Stephen Smalley wrote:
> On Fri, 2004-11-05 at 06:09, Thomas Liesner wrote:
> > I think this has to do with selinux. The corresponding entries
> > in /var/log/messages are:
> > 
> > > Nov  5 12:04:55 fusie kernel: audit(1099652695.277:0): avc:  denied  { getattr } for  pid=4587 exe=/usr/sbin/httpd path=/home/thomas/public_html dev=hda3 ino=1456101 scontext=root:system_r:httpd_t tcontext=user_u:object_r:user_home_t tclass=dir
> 
> /sbin/restorecon -R /home/thomas/public_html

Hm.  I'd prefer to introduce users here to "chcon", since in the strict
policy normal users don't have access to file_contexts.  Also restorecon
only works if the directory is named public_html.

Franz/Thomas: there is a guide for SELinux and Apache coming up, there
should be a "beta" version of it by the FC3 release.





More information about the test mailing list