James B. Byrne wrote: > 3. Run # audit2allow -l -i /var/log/messages The problem with audit2allow is that it usually tells you to open system way too much. It kind of beats the purpuse of having SELinux enabled on the machine. What you should do instead is to check what file contexts mailman_cgi_t is allowed to access, and set the target files to one of those contexts. If the files are created on-the-fly by mailman, than set the context to parent directory, and the files will inherit it when created. If there's no pre-existing file context that fits the purpuse, you'll need to create a new one, assign files/directories to it, and allow access from mailman_cgi_t to them. -- Aleksandar Milivojevic <amilivojevic@xxxxxx> Pollard Banknote Limited Systems Administrator 1499 Buffalo Place Tel: (204) 474-2323 ext 276 Winnipeg, MB R3T 1L7
[Centos] Setting up Mailman with SELinux on CentOS4 revised
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: [Centos] Setting up Mailman with SELinux on CentOS4 revised
- From: amilivojevic at pbl.ca (Aleksandar Milivojevic)
- Date: Thu Mar 17 16:43:54 2005
- In-reply-to: <423962D3.20600.2DC19203@localhost>
- References: <423962D3.20600.2DC19203@localhost>
- References:
- [Centos] Setting up Mailman with SELinux on CentOS4 revised
- From: James B. Byrne
- [Centos] Setting up Mailman with SELinux on CentOS4 revised
- Prev by Date: [Centos] Some newbie (straightforward) questions especially regarding KDE and packages :)
- Next by Date: [Centos] Some newbie (straightforward) questions especially regarding KDE and packages :)
- Previous by thread: [Centos] Setting up Mailman with SELinux on CentOS4 revised
- Next by thread: [Centos] Setting up Mailman with SELinux on CentOS4 revised
- Index(es):
 |