Re: PHP cannot connect to mysql server

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Fedora SELinux support list for users & developers." <fedora-selinux-list@xxxxxxxxxx>
Subject: Re: PHP cannot connect to mysql server
From: Stephen Smalley <sds@xxxxxxxxxxxxxx>
Date: Fri, 12 Nov 2004 08:29:12 -0500
In-reply-to: <1100261959.4306.1.camel@moss-spartans.epoch.ncsc.mil>
List-archive: </archives/fedora-selinux-list>
List-help: <mailto:fedora-selinux-list-request@redhat.com?subject=help>
List-id: "Fedora SELinux support list for users & developers." <fedora-selinux-list.redhat.com>
List-post: <mailto:fedora-selinux-list@redhat.com>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-selinux-list>, <mailto:fedora-selinux-list-request@redhat.com?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-selinux-list>, <mailto:fedora-selinux-list-request@redhat.com?subject=unsubscribe>
Organization: National Security Agency
References: <41923670.7070909@feuerpokemon.de> <41923936.6000307@redhat.com> <41923C2E.4070507@feuerpokemon.de> <1100103543.1972.219.camel@moss-spartans.epoch.ncsc.mil> <41924115.9050305@feuerpokemon.de> <41924239.1070100@redhat.com> <419243D3.90907@feuerpokemon.de> <41930258.9080408@feuerpokemon.de> <41934829.5090408@redhat.com> <1100261959.4306.1.camel@moss-spartans.epoch.ncsc.mil>
Reply-to: "Fedora SELinux support list for users & developers." <fedora-selinux-list@xxxxxxxxxx>

On Fri, 2004-11-12 at 07:19, Stephen Smalley wrote:
> You still need to add rules allowing httpd to talk to mysqld.  Adding
> mysqld.te just created a separate domain for it (not sure about the log
> file problem).  So you still need to add:
> 	allow httpd_t mysqld_var_run_t:sock_file rw_file_perms;
> 	can_unix_connect(httpd_t, mysqld_t)
> 	can_unix_send(httpd_t, mysqld_t)

Hmmm...unless it is actually httpd_php_t that is talking to mysqld, and
not the httpd_t process itself.  In that case, those permissions are
already present in the apache.te file.

-- 
Stephen Smalley <sds@xxxxxxxxxxxxxx>
National Security Agency

Follow-Ups:
- Re: PHP cannot connect to mysql server
  - From: dragoran

References:
- PHP cannot connect to mysql server
  - From: dragoran
- Re: PHP cannot connect to mysql server
  - From: Daniel J Walsh
- Re: PHP cannot connect to mysql server
  - From: dragoran
- Re: PHP cannot connect to mysql server
  - From: Stephen Smalley
- Re: PHP cannot connect to mysql server
  - From: dragoran
- Re: PHP cannot connect to mysql server
  - From: Daniel J Walsh
- Re: PHP cannot connect to mysql server
  - From: dragoran
- Re: PHP cannot connect to mysql server
  - From: dragoran
- Re: PHP cannot connect to mysql server
  - From: Daniel J Walsh
- Re: PHP cannot connect to mysql server
  - From: Stephen Smalley

Prev by Date: Re: Making content readable by httpd
Next by Date: Re: Making content readable by httpd
Previous by thread: Re: PHP cannot connect to mysql server
Next by thread: Re: PHP cannot connect to mysql server
Index(es):
- Date
- Thread

[Index of Archives] [Fedora Users] [Fedora Desktop] [Big List of Linux Books] [Yosemite News] [Yosemite Campsites] [KDE Users] [Gnome Users]