[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: How best (BUT WHY) get rid of SELinux?



On 9/25/07, Les Mikesell <lesmikesell gmail com> wrote:
> Jonathan Underwood wrote:
> > On 25/09/2007, Les Mikesell <lesmikesell gmail com> wrote:
> >>   2) How many more years and millions will it take to adapt the
> >> decades-worth of tradtional unix tools and applications that Linux users
> >> take for granted to a wildly different security model?
> >>
> >
> > This work has been done. What Unix tools are you using which aren't
> > working with SElinux?
>
> I have an assortment of suid perl scripts that run under apache's cgi
> interface.  I didn't expect them to work.  Will they?  What about
> MimeDefang, running as a sendmail milter and connecting via local
> sockets to an assortment of mail scanning processes that may each be
> running under their own uid.  I've seen issues posted about the sockets
> amd SELinux.  Have they been solved?

unless your perl scripts are making changes directly to the
fileserver, they should work. If not, you may need to add the required
contexts, without knowing more about your situation, i would guess
that they would work

-- 
Fedora 7 : sipping some of that moonshine
( www.pembo13.com )


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]