Webalizer seems to have lost its fc file somewhere along the way. The attached patch supplies a file context that works on FC3/strict/1.23.10-2, and also allows access to the nscd service. David
Index: domains/program/webalizer.te =================================================================== RCS file: /home/cvs/starfury/etc/selinux/strict/src/policy/domains/program/webalizer.te,v retrieving revision 1.1.1.1 diff -u -r1.1.1.1 webalizer.te --- domains/program/webalizer.te 6 Apr 2005 22:33:28 -0000 1.1.1.1 +++ domains/program/webalizer.te 13 Apr 2005 14:28:28 -0000 @@ -4,7 +4,7 @@ # # Depends: apache.te -application_domain(webalizer) +application_domain(webalizer, `, nscd_client_domain') # to use from cron system_crond_entry(webalizer_exec_t,webalizer_t) role system_r types webalizer_t; Index: file_contexts/program/webalizer.fc =================================================================== RCS file: /home/cvs/starfury/etc/selinux/strict/src/policy/file_contexts/program/webalizer.fc,v retrieving revision 1.1.1.1 diff -u -r1.1.1.1 webalizer.fc --- file_contexts/program/webalizer.fc 6 Apr 2005 22:33:28 -0000 1.1.1.1 +++ file_contexts/program/webalizer.fc 6 Apr 2005 22:56:45 -0000 @@ -1 +1,3 @@ # +/usr/bin/webalizer -- system_u:object_r:webalizer_exec_t +/var/lib/webalizer(/.*) system_u:object_r:webalizer_var_lib_t
-- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-selinux-list
