I run selinux in permissive. Once i figure out how to write policy i'll
put it back on active..<G>
Lanny Marcus wrote:
On 01 September 2007, William Warren
<hescominsoon@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Message: 3
<snip>
you can also go with webmin to configure this stuff..<G>
If you use Webmin, at this time, it is probably not a good idea to use
SELinux with it. I have a very recent thread about this and there is a
bug on Webmin. The SELinux folks are aware of it. Below is about
SELinux. Lanny
This explanation and description of the problem are fine. We probably
need a custom policy for webmin to allow iptables to write to scripts
running as webmin, since catching stderr is important. There is no
file context that can be set to allow this. As I recall from the
original bug report, iptables was also trying to communicate with
another open file descriptor. This one I beleive should be closed on
exec.
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
--
My "Foundation" verse:
Isa 54:17 No weapon that is formed against thee shall prosper; and
every tongue that shall rise against thee in judgment thou shalt
condemn. This is the heritage of the servants of the LORD, and their
righteousness is of me, saith the LORD.
-- carpe ductum -- "Grab the tape"
CDTT (Certified Duct Tape Technician)
Linux user #322099
Machines:
206822
256638
276825
http://counter.li.org/
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
