Re: httpd and userdir

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Le dimanche 29 octobre 2006 à 23:01 +0100, Tanguy Eric a écrit :
> Le dimanche 29 octobre 2006 à 14:55 -0700, Craig White a écrit :
> > On Sun, 2006-10-29 at 22:43 +0100, Tanguy Eric wrote:
> > > Le dimanche 29 octobre 2006 à 20:44 +0000, Andy Green a écrit :
> > > > Tanguy Eric wrote:
> > > > 
> > > > > I have httpd running fine on a newly installed FC6 but i can't achieve
> > > > > httpd to serve user's public_html directory. I commented 'UserDir
> > > > > disable' and added 'UserDir public_html' in httpd.conf but when i try to
> > > > > go to http://localhost/~tanguy/ i obtain You don't have permission to
> > > > > access /~tanguy/ on this server. Is there something to do with selinux
> > > > > or permissions ?
> > > > 
> > > > Check /var/log/messages for any selinux intervention, 
> > > > /var/log/httpd/error_log for apache hints.
> > > > 
> > > > -Andy
> > > > 
> > > > 
> > > 
> > > I think it's a selinux problem : 
> > > Oct 29 22:38:30 bureau kernel: audit(1162157910.280:5): avc:  denied
> > > { getattr 
> > > } for  pid=2341 comm="httpd" name="public_html" dev=dm-0 ino=5243211
> > > scontext=sy
> > > stem_u:system_r:httpd_t:s0 tcontext=user_u:object_r:user_home_t:s0
> > > tclass=dir
> > > 
> > > but i don't speak fluently selinux ...
> > > 
> > > someone could help me to understand this and find a solution ?
> > > Thanks
> > ----
> > you could wait around or you could go to 'Security Level and
> > Firewall' (system-config-securitylevel)
> > 
> > and either change from Enforcing to Permissive (I think this requires
> > reboot)
> > or
> > modify Security Policy => HTTPD => 'Allow HTTPD to read home
> > directories' is checked and if necessary, as root...
> 
> I have already done this without any chances ...
> 
> > 
> > fixfiles relabel /home 
> 
> Maybe i have to try this but it seems to want to relabel all the file
> systems and not only /home.
> 
> > 
> > (doing this from memory - you might want to reference man pages)
> > 
> > Craig
> > 
> 
> Eric

I modified the context of public_html and now it works fine.
Thanks

Eric


-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora Magazine]     [Fedora News]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [SSH]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux