Fedora 9 can't use apache's mod_auth_shadow
Kevin White
fedora-kevin at kevbo.org
Wed Feb 4 18:07:58 UTC 2009
I'm trying to set an out-of-the-box httpd to use mod_auth_shadow to
authenticate users. Selinux won't let me.
mod_auth_shadow runs /usr/sbin/validate (which is chrooted) to actually
check against /etc/shadow:
[root at localhost selinux]# ls -lrtZ /usr/sbin/validate
-rwsr-xr-x root root system_u:object_r:chkpwd_exec_t:s0 /usr/sbin/validate
Validate appears to be labeled correctly, so, apparently the problem is
that httpd can't make the domain transistion.
I really don't know how to allow it to. I'd like to.
Help!
Thanks,
Kevin
selinux-policy-devel-3.3.1-118.fc9.noarch
selinux-policy-3.3.1-118.fc9.noarch
selinux-policy-targeted-3.3.1-118.fc9.noarch
httpd-2.2.9-1.fc9.i386
mod_auth_shadow-2.2-4.fc9.i386
More information about the fedora-selinux-list
mailing list