Great, thanks for the confirmation. The audit2allow way works fine. ----- Original Message ---- From: Cristian Ciupitu <cristian.ciupitu@xxxxxxxxx> To: selinux@xxxxxxxxxxxxxxxxxxxxxxx; Chris Lopes <clopes@xxxxxxxxx> Sent: Thu, September 9, 2010 7:27:12 PM Subject: Re: Giving httpd access to a mounted NTFS volume > From: Chris Lopes <clopes@xxxxxxxxx> > Subject: Giving httpd access to a mounted NTFS volume > To: selinux@xxxxxxxxxxxxxxxxxxxxxxx > Date: Thursday, September 9, 2010, 2:46 PM > Hi, > > I am using selinux under Fedora 10 (2.6.27.37). > I have Apache httpd running, and I would like it to be able > to serve requests > for files which are on a mounted NTFS volume. > > I have tried to mount the volume with an appropriate > context: > mount -o context=system_u:object_r:httpd_sys_content_t:s0 > /dev/somedevice > /mnt/somemountpoint > > But the resulting context on files within the mount is > still: system_u:object_r:fusefs_t:s0 > The mount itself doesn't generate any noteworthy > warnings/errors in my logs. > So of course seliux disallows apache to read the files and > generates > corresponding denials in my logs. > No other partition on this device is already mounted. > > Is this a known bug? https://bugzilla.redhat.com/show_bug.cgi?id=502946 Cheers, Cristian -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
