Daniel S. Reichenbach wrote: >chcon -Rt httpd_sys_content_t ~/html > >for the directory? This will allow httpd to access the directory and >serve the user directory, when you have SELinux enabled. > > > that's much better advice than mine. So, RH/CentOS created a httpd_sys_content_t type. I assume there's a general rule which enables the httpd_t domain to read the fle with this type. But what will you do when you want a much more strict policy? The only way to defend the virtual hosts from each other to create different content types just like http_sys_virthost1_t, http_sys_virthost2_t etc and different . Imagine users want run php scripts. If you just enable to exec all types of php scripts there's a chance that you will weaken you security. Not sure but there's a chance. bye, Ago
[Centos] Problem with apache in CentOS 4.0 (final)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: [Centos] Problem with apache in CentOS 4.0 (final)
- From: ago at lsc.hu (Deim Ágoston)
- Date: Fri Mar 11 10:09:52 2005
- In-reply-to: <1110532329.3448.13.camel@xxxxxxxxxxxxxxxxxxxxxxxx>
- References: <1110474055.23458.1.camel@xxxxxxxxxxxxxxxxxxxxxx> <1110532329.3448.13.camel@xxxxxxxxxxxxxxxxxxxxxxxx>
- Follow-Ups:
- [Centos] Problem with apache in CentOS 4.0 (final)
- From: Daniel S. Reichenbach
- [Centos] Problem with apache in CentOS 4.0 (final)
- References:
- [Centos] Problem with apache in CentOS 4.0 (final)
- From: Cristofer N. Reyes A.
- [Centos] Problem with apache in CentOS 4.0 (final)
- From: Daniel S. Reichenbach
- [Centos] Problem with apache in CentOS 4.0 (final)
- Prev by Date: [Centos] 3.3 or 3.4
- Next by Date: [Centos] Problem with apache in CentOS 4.0 (final)
- Previous by thread: [Centos] Problem with apache in CentOS 4.0 (final)
- Next by thread: [Centos] Problem with apache in CentOS 4.0 (final)
- Index(es):
 |