Apache Httpd on FC4 screwed up? FrontPage will notwork w/ochanges.

Thu Nov 3 18:27:59 UTC 2005

>From: fedora-list-bounces at redhat.com
>[mailto:fedora-list-bounces at redhat.com]On Behalf Of Rahul Sundaram
>Sent: Wednesday, November 02, 2005 7:04 PM
>To: For users of Fedora Core releases
>Subject: Re: Apache Httpd on FC4 screwed up? FrontPage will notwork
>w/ochanges.
>
>
>Hi
>
>>Ok, so my "problems" started because I had SElinux running and somehow
>>I do not have it properly configured so that the 
>apachectl/htppd scripts
>>would work correctly, is that it?
>>  
>>
>It might be that or it might be that the SELinux policies need to be 
>changed to accomodate something you were doing which does not enhance 
>the security risk
>
>>I tested this theory out by restoring the original scripts and adding
>>selinux=0 to grub, rebooted, and everything worked like a charm.
>>
>>  
>>
>You might want to disable SELinux protection for only http 
>while you go 
>further and get your problems sorted out. This is accomplished using 
>SELinux booleans or toggles.
>
>For Apache,  read this 
>http://fedora.redhat.com/docs/selinux-apache-fc3/sn-debugging-a
nd-customizing.html

Thanks for the information, however there seems to be
problem with the information in:

Section 8.1.? says that SElinix tab is in
system-config-securitylevel for FC3 but in FC4,
all that appears is:

---------[ Firewall Configuration ]-------------
A firewall protects against unauthorized
network intrusions. Enabling a firewall blocks
all incomming connections. Disabling a firewall
allows all connections and is not recommended

Security Level: (*) Enabled ( ) Disabled

   [OK]  [Customize] [Cancel]
-------------------------------------------------

Clicking 'Customize' only allows you to choose
your trusted Devices, MAQUERADE Devices and a
few selections: SSH, WWW, Telnet, Secure WWW,
FTP, Mail, and "Other Ports"

Thats it.  There is nothing in this program
that smells of SElinux in it.

I am not able to figure out from the above link
just where or how to add the boolean parameters
httpd_xxx_xxx as the information implies there
is a SElinix tab within the program specified
as: system-config-securitylevel

>Until I can figure this out, I will have my box running w/o SElinux.
>Thanks for pointing this out.
>  
>
You can also post the AVC denied messages from /var/log/audit (if you 
have audit deamon enabled) or /var/log/messages

regards
Rahul

-- 
fedora-list mailing list
fedora-list at redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

-- 
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.362 / Virus Database: 267.12.7/155 - Release Date: 11/1/2005

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.362 / Virus Database: 267.12.7/159 - Release Date: 11/2/2005