W dniu 01.03.2017 o 00:51, RM-IT R.Mielnik pisze:
hi,
i got a problem with transition rules. what i try to do is to
make selinux change the context type of "rwdirectory" while it is
created via ftp (proftpd in ftpd_t domain) in httpd_user_content_t
directory
[...]
ok, i've found the reason. using auditctl mentioned in "SELinux type
transition rule not working" (jason zaman: thank you:)) i got on working
system:
type=PATH msg=audit(1488452722.762:8109253): item=0 name="/some/path/"
inode=403256560 dev=93:00 mode=040755 ouid=48 ogid=48 rdev=00:00
obj=system_u:object_r:httpd_user_content_t:s0 objtype=PARENT
type=PATH msg=audit(1488452722.762:8109253): item=1
name="/some/path/.rw" inode=1386632 dev=93:00 mode=040755 ouid=48
ogid=48 rdev=00:00 obj=system_u:object_r:httpd_user_rw_content_t:s0
objtype=CREATE
and on failing system(s):
type=PATH msg=audit(1488450181.426:89307): item=0 name="/some/path/"
inode=134671193 dev=fd:02 mode=040755 ouid=48 ogid=48 rdev=00:00
obj=system_u:object_r:httpd_user_content_t:s0 objtype=PARENT
type=PATH msg=audit(1488450181.426:89307): item=1 name="/some/path/"
inode=134671193 dev=fd:02 mode=040755 ouid=48 ogid=48 rdev=00:00
obj=system_u:object_r:httpd_user_content_t:s0 objtype=PARENT
type=PATH msg=audit(1488450181.426:89307): item=2
name="/some/path/.dstXX6M4cr8" inode=101891 dev=fd:02 mode=040755
ouid=48 ogid=48 rdev=00:00 obj=system_u:object_r:httpd_user_content_t:s0
objtype=DELETE
type=PATH msg=audit(1488450181.426:89307): item=3 name="/some/path/.rw"
inode=101891 dev=fd:02 mode=040755 ouid=48 ogid=48 rdev=00:00
obj=system_u:object_r:httpd_user_content_t:s0 objtype=CREATE
on a second case proftpd uses temporary dir name, so there is no chance
for pattern to work. bummer... have to work it out differently
_______________________________________________
Selinux mailing list
Selinux@xxxxxxxxxxxxx
To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx.
To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
