On Thu, 2005-03-02 at 10:24 -0500, Daniel J Walsh wrote: > There is a bug in targeted policy that allows the system to transition > from unconfined_t to httpd_sys_script_t even > if httpd_disable_trans is set. > > selinux-policy-targeted-1.17.30-2.76 should fix this for FC3 I installed that after updating my system with selinux-policy-targeted-1.17.30-2.75, but I didn't see a change. I still got the same denials. I've been running in permissive mode, and so far a few other denials have popped up (denials for scripts trying to write directories). I've been able to resolve them by changing the type in the target security context. When you want me to try something out, let me know. Regards, Ranbir -- Kanwar Ranbir Sandhu Linux Consultant Systems Aligned Inc. www.systemsaligned.com
