Re: selinux-policy update resets /etc/selinux/targeted/contexts/files/file_contexts?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 12/17/2014 05:07 AM, Patrick Bervoets wrote:
> Hi,
>
> On an internal webserver (latest C6) I want smb-access to /var/www/html/
> In april I did
>     chcon -R -t public_content_rw_t /var/www/html/
>     setsebool -P allow_smbd_anon_write 1
>     setsebool -P allow_httpd_anon_write 1
>     echo "/var/www/html/  --
> unconfined_u:object_r:public_content_rw_t:s0" >>
> /etc/selinux/targeted/contexts/files/file_contexts
>
This is incorrect. 

# semanage fcontext -a -t public_content_rw_t '/var/www/html(/.*?)'
# restorecon -R -v /var/www/html

Should change the label and it should survive relabel.

After the latest round of updates (including selinux-policy.noarch
0:3.7.19-260.el6_6.1 and selinux-policy-targeted.noarch
0:3.7.19-260.el6_6.1) samba-access to /var/www/html was denied.
> Applying the commands above re-enabled samba-access.
>
> Anyone knows how I can configure selinux to remeber this after an
> update to the policies?
>
> Thanks
> Patrick
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux