fedora-selinux-list-request@xxxxxxxxxx wrote:
Send fedora-selinux-list mailing list submissions to
fedora-selinux-list@xxxxxxxxxx
To subscribe or unsubscribe via the World Wide Web, visit
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
or, via email, send a message with subject or body 'help' to
fedora-selinux-list-request@xxxxxxxxxx
You can reach the person managing the list at
fedora-selinux-list-owner@xxxxxxxxxx
When replying, please edit your Subject line so it is more specific
than "Re: Contents of fedora-selinux-list digest..."
Today's Topics:
1. Re: Data access to two daemon (Stephen Smalley)
On Tue, 2007-08-21 at 15:55 -0500, Arthur Pemberton wrote:
I have a personal server setup with SELinux in targeted mode.
I would like to allow rw access over these files to Samba, and ro
access to these files to httpd.
In my current setup, SELinux requires the security context of the
respective daemon to allow access to them.
Since I gave Samba access more priority, the current context is:
root:object_r:samba_share_t
The files are not owned by root, they are currently chowned pembo13:comrades.
Please advise on the best method to arrange for the access that I seem
to require.
man samba_selinux seems to suggest using public_content_rw_t on the file
and setting the allow_smbd_anon_write boolean.
I do that in FC6, and it does work.
Regards,
John Griffiths
|
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
