Bug 139744
Summary: | write access to user's public_html directory | ||
---|---|---|---|
Product: | [Fedora] Fedora Documentation | Reporter: | Mark Drago <markdrago> |
Component: | selinux-apache | Assignee: | Chad Sellers <csellers> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Tammy Fox <tammy.c.fox> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | devel | CC: | walters |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | 1.5.6 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-04-28 22:03:40 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 136427 |
Description
Mark Drago
2004-11-17 20:25:18 UTC
I'm assigning this to Karsten since he is working with Colin on this document. PHP kind of throws a wrench into our original design; because it runs in-process, it requires httpd_t to have direct write access to httpd_sys_content_t, etc. See: http://www.redhat.com/archives/fedora-selinux-list/2004-November/msg00097.html Does this need an FAQ entry for FC4 or FC5? Reassigning, please evaluate for usage, or close as WONTFIX. Thanks. With strict policy, this will require a policy change, as there is no type that allows apache/php write access as well as user_t. For targeted, this can get httpd_sys_script_rw_t, just like the other php script FAQ (possibly merged), and the user in unconfined_t can still access it. Addressed in cvs |