Making SELinux allow access to certain directories
Marko Vojinovic
vvmarko at panet.co.yu
Tue Oct 16 09:41:35 UTC 2007
On Monday 15 October 2007 20:21, Daniel J Walsh wrote:
> Dr. Michael J. Chudobiak wrote:
> > Daniel J Walsh wrote:
> >>> I am a newbie to SELinux, so would prefer not to create local policies
> >>> etc. What should I do in order to allow access for a typical service to
> >>> typical directory?
> >>
> >> setsebool -P httpd_enable_homedirs 1
> >
> > Or, in a more user-friendly way, play with system-config-selinux.
> >
> > - Mike
>
> What could be more friendly then the command line. :^)
I second that. The GUI just lets you click on whatever, and then it goes to
the background and executes appropriate command with appropriate switches.
If, for whatever reason, this background command fails, the user is not
informed about it.
I had an issue with firefox several times (for example), where picking it from
the menus just did nothing. No error, no notification, no firefox. And only
after starting it from the terminal I actually found out why...
GUI is user-friendlier only for the things that cannot fail, else it just adds
to confusion. ;-)
Best, :-)
Marko
Marko Vojinovic
Institute of Physics
University of Belgrade
======================
e-mail: vmarko at phy.bg.ac.yu
More information about the fedora-list
mailing list