mailman cgi-bin denied search
Daniel J Walsh
dwalsh at redhat.com
Wed Oct 19 13:57:07 UTC 2005
Tim Fenn wrote:
> I recently installed mailman on my FC3 box (using the redhat based
> RPMs), and it seems to be working just fine, except for the numerous
> avc messages it cranks out whenever I run one of the cgi scripts
> associated with mailman (e.g. via the web interface):
>
> Oct 19 00:34:21 agora kernel: audit(1129707261.236:212): avc: denied
> { search } for pid=18761 comm="listinfo" name="run" dev=sda1
> ino=1294372 scontext=root:system_r:mailman_cgi_t tcontext=system_
> u:object_r:var_run_t tclass=dir
>
>
Why would mailman listinfo be searching /var/log directory?
> I have selinux-policy-targeted-1.17.30-3.16, and
>
> # getsebool httpd_enable_cgi
> httpd_enable_cgi --> active
> # getsebool httpd_enable_homedirs
> httpd_enable_homedirs --> active
> # getsebool httpd_ssi_exec
> httpd_ssi_exec --> active
> # getsebool httpd_builtin_scripting
> httpd_builtin_scripting --> active
> # getsebool httpd_unified
> httpd_unified --> active
>
> set, is there something I'm missing?
>
> Thanks for any help,
> Tim
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
--
More information about the fedora-selinux-list
mailing list