On 02/21/2011 10:19 PM, Scott Gifford wrote:
[ ... ]
> Yeah, true, but I'm not sure how to cause them to have no categoryI think if you do the file context correctly you can run restorecon -F
> either, apart from using setxattr.
>
to fix the label. If your CGI were in Code or python, you could use
setfscreatecon, to set the label automatically.
My code is in Perl, so I just printed the NULL-terminated context name to:
/proc/$$/attr/fscreate
It required that I give the process context setfscreate permission, like this:
allow httpd_ppi_portal_app_t self:process setfscreate;
Now it is working great, thanks!
-----Scott.
-- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
