httpd/rawhide

Russell Coker russell at coker.com.au
Thu Sep 23 12:38:09 UTC 2004


On Thu, 23 Sep 2004 20:54, Gunnar Hilling <fedora.gunnar at hilling.de> wrote:
> Sep 23 12:50:45 nelson kernel: audit(1095936645.518:0): avc:  denied  {
> execute } for  pid=4862 path=/lib/tls/i686/libdb-4.2.so dev=dm-5
> ino=234979213 scontext=root:system_r:httpd_t
> tcontext=system_u:object_r:lib_t tclass=file
>
> Anyone could fix this in the policy (cause I can't...).

The attached patch to the policy source fixes the problem.

If you don't use the policy source then just append the following line 
to /etc/selinux/targeted/contexts/files/file_contexts and then use restorecon 
to fix the context of the file.

/lib(64)?/tls/i.86/[^/]*\.so(\.[^/]*)* --      system_u:object_r:shlib_t

-- 
http://www.coker.com.au/selinux/   My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/  Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/    Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/  My home page
-------------- next part --------------
A non-text attachment was scrubbed...
Name: diff
Type: text/x-diff
Size: 510 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20040923/67a02a8b/attachment.bin>


More information about the fedora-devel-list mailing list