Re: apache, passenger, and selinux

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 11/28/2012 03:18 PM, m.roth@xxxxxxxxx wrote:
> I seem to have quieted some, but I'm still getting noise from selinux. 
> Here's one that really puzzles me: my users have a ruby app with passenger 
> running. However, one of the sealerts gives me: sealert -l
> 5a02b0a1-8512-4f71-b1c8-70a40b090a9d SELinux is preventing /bin/chmod from
> using the fowner capability.
> 
> *****  Plugin catchall_boolean (89.3 confidence) suggests 
> *******************
> 
> If you want to allow Apache to run in stickshift mode, not transition to 
> passenger Then you must tell SELinux about this by enabling the 
> 'httpd_run_stickshift' boolean.You can read 'httpd_selinux' man page for 
> more details. Do setsebool -P httpd_run_stickshift 1 <...>
> 
> Is there a boolean I'm missing, or are they doing something wrong? Clues 
> for the poor appreciated.
> 
> mark
> 
> _______________________________________________ CentOS mailing list 
> CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
> 
Have you turned on this boolean?  And did it quiet the AVC's.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlC2fTQACgkQrlYvE4MpobM8BwCfcyQ8KPDf5s8rVAKNUCIMedJr
jfcAoNfDpQW0dQnymPM97TM604H6jKS2
=HA/W
-----END PGP SIGNATURE-----
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos


[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux