This is what audit2allow is showing now.
tail -n60 /var/log/messages | audit2allow -m local
module local 1.0;
require {
type unlabeled_t;
type default_t;
type boot_t;
type httpd_t;
type httpd_sys_script_t;
type lost_found_t;
class lnk_file read;
class dir getattr;
class file { read write getattr };
}
#============= httpd_sys_script_t ==============
allow httpd_sys_script_t unlabeled_t:file { read write };
#============= httpd_t ==============
allow httpd_t boot_t:dir getattr;
allow httpd_t default_t:file getattr;
allow httpd_t default_t:lnk_file read;
allow httpd_t lost_found_t:dir getattr;
It is getting worse.
Regards,
John
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
