Re: Running httpd scripts from nfs mounts?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Fedora SELinux support list for users & developers." <fedora-selinux-list@xxxxxxxxxx>
Subject: Re: Running httpd scripts from nfs mounts?
From: Stephen Smalley <sds@xxxxxxxxxxxxxx>
Date: Thu, 27 Jan 2005 10:33:41 -0500
In-reply-to: <41F90A83.5040907@redhat.com>
List-archive: <https://www.redhat.com/archives/fedora-selinux-list>
List-help: <mailto:fedora-selinux-list-request@redhat.com?subject=help>
List-id: "Fedora SELinux support list for users & developers." <fedora-selinux-list.redhat.com>
List-post: <mailto:fedora-selinux-list@redhat.com>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-selinux-list>, <mailto:fedora-selinux-list-request@redhat.com?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-selinux-list>, <mailto:fedora-selinux-list-request@redhat.com?subject=unsubscribe>
Organization: National Security Agency
References: <41F701BD.2040302@redhat.com> <1106716143.4353.14.camel@nexus.verbum.private> <41F7B5B5.3010201@redhat.com> <41F7E56B.6010708@redhat.com> <1106795695.4353.35.camel@nexus.verbum.private> <41F90A83.5040907@redhat.com>
Reply-to: "Fedora SELinux support list for users & developers." <fedora-selinux-list@xxxxxxxxxx>

On Thu, 2005-01-27 at 10:36, Daniel J Walsh wrote:
> Ah, good point, I wonder if this might be a bug?  Is the kernel not 
> seeing the file as httpdcontent but as nfs_t
> even though the mount option was specified.

Is the filesystem mounted nosuid?  If so, the kernel will ignore domain
transitions on it for the same reason as it ignores setuid programs.

-- 
Stephen Smalley <sds@xxxxxxxxxxxxxx>
National Security Agency

Follow-Ups:
- Re: Running httpd scripts from nfs mounts?
  - From: John W. Lockhart

References:
- Running httpd scripts from nfs mounts?
  - From: John W. Lockhart
- Re: Running httpd scripts from nfs mounts?
  - From: Colin Walters
- Re: Running httpd scripts from nfs mounts?
  - From: John W. Lockhart
- Re: Running httpd scripts from nfs mounts?
  - From: Daniel J Walsh
- Re: Running httpd scripts from nfs mounts?
  - From: Colin Walters
- Re: Running httpd scripts from nfs mounts?
  - From: Daniel J Walsh

Prev by Date: Re: Running httpd scripts from nfs mounts?
Next by Date: Re: Running httpd scripts from nfs mounts?
Previous by thread: Re: Running httpd scripts from nfs mounts?
Next by thread: Re: Running httpd scripts from nfs mounts?
Index(es):
- Date
- Thread

[Index of Archives] [Fedora Users] [Fedora Desktop] [Big List of Linux Books] [Yosemite News] [Yosemite Campsites] [KDE Users] [Gnome Users]