-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Stephen Smalley wrote: > On Wed, 2007-12-19 at 10:13 +0000, Stefan Schulze Frielinghaus wrote: >> On Tue, 2007-12-18 at 13:55 -0500, Stephen Smalley wrote: >> [...] >>> Try restorecon -FRv /var/www >> Yeah that solved the problem. The -F option is a little bit tricky ;-) >> Never expected something like that. > > /etc/selinux/targeted/contexts/customizable_types was created to allow > programs like restorecon to omit files with certain types from being > relabeled by default, so that admin customizations wouldn't be lost. > The httpd-related types are a common case of this, where the admin wants > to manually manage the type under the web root and not have them > clobbered. As to whether it still makes sense when we have semanage > fcontext, I'm not sure. > Yes I would like to remove it, it is more trouble then it is worth at this point. semanage is the way things should be customized. We should remove it from Fedora 9 and going forward. Added munin cgi defitions to rawhide, but update does not fix them since they were already labeled httpd_sys_content_t. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHaTNSrlYvE4MpobMRAqADAKDXIKh9MxP0V+D/W23Y/mGXgUtTsACgpZXt rrcNGgAnKeHFWxPk4n/U7do= =dt6Y -----END PGP SIGNATURE----- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
