targeted policy clashes CGI program under apache
walters at redhat.com
Tue Mar 22 16:46:52 UTC 2005
On Tue, 2005-03-22 at 08:25 -0800, Ben wrote:
> On Mar 22, 2005, at 5:44 AM, Colin Walters wrote:
> > You have three options basically:
> > 1) Disable enforcement for Apache
> > 2) Install policy source and add the permission
> > 3) Wait for a FC3 policy update with this fixed
> Well, thanks to audit2allow, it looks like 2 will be pretty easy. I'm
> worried about what you mean when you say it makes updates fragile,
> however...... what do you mean?
It should generally work if all you're doing is adding a local.te with a
few additional policy rules. I do it myself on my server.
More information about the fedora-selinux-list