Bug 139744
| Summary: | write access to user's public_html directory | ||
|---|---|---|---|
| Product: | [Fedora] Fedora Documentation | Reporter: | Mark Drago <markdrago> |
| Component: | selinux-apache | Assignee: | Chad Sellers <csellers> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Tammy Fox <tammy.c.fox> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | devel | CC: | walters |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | 1.5.6 | Doc Type: | Bug Fix |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2006-04-28 22:03:40 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 136427 | ||
|
Description
Mark Drago
2004-11-17 20:25:18 UTC
I'm assigning this to Karsten since he is working with Colin on this document. PHP kind of throws a wrench into our original design; because it runs in-process, it requires httpd_t to have direct write access to httpd_sys_content_t, etc. See: http://www.redhat.com/archives/fedora-selinux-list/2004-November/msg00097.html Does this need an FAQ entry for FC4 or FC5? Reassigning, please evaluate for usage, or close as WONTFIX. Thanks. With strict policy, this will require a policy change, as there is no type that allows apache/php write access as well as user_t. For targeted, this can get httpd_sys_script_rw_t, just like the other php script FAQ (possibly merged), and the user in unconfined_t can still access it. Addressed in cvs |