Bug 155958
Summary: | vsftpd cann't do anonymous upload | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | han pingtian <hanpingtian> |
Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED NOTABUG | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-04-26 12:39:44 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
han pingtian
2005-04-26 06:10:11 UTC
You need to set the upload directory to ftpd_anon_rw_t. chcon -t ftpd_anon_rw_t /var/ftp/ftp/upload man ftpd_selinux describes this. thanks a lot. another question: when boot the mechine, it reports those informations: ....... SELinux: initialized (dev sysfs, type sysfs), uses genfs_contexts SELinux: initialized (dev usbfs, type usbfs), uses genfs_contexts audit(1114592249.835:0): avc: denied { search } for name=1 dev=proc ino=65538 scontext=system_ u:system_r:kernel_t tcontext=system_u:system_r:init_t tclass=dir audit(1114592249.836:0): avc: denied { search } for name=475 dev=proc ino=31129602 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:init_t tclass=dir audit(1114592249.836:0): avc: denied { search } for name=486 dev=proc ino=31850498 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:initrc_t tclass=dir audit(1114592249.836:0): avc: denied { search } for name=543 dev=proc ino=35586050 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.836:0): avc: denied { search } for name=546 dev=proc ino=35782658 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.837:0): avc: denied { search } for name=559 dev=proc ino=36634626 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.837:0): avc: denied { search } for name=564 dev=proc ino=36962306 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.837:0): avc: denied { search } for name=569 dev=proc ino=37289986 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:hotplug_t tclass=dir audit(1114592249.838:0): avc: denied { search } for name=575 dev=proc ino=37683202 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:hotplug_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=576 dev=proc ino=37748738 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:hotplug_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=578 dev=proc ino=37879810 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=595 dev=proc ino=38993922 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:hotplug_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=639 dev=proc ino=41877506 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:initrc_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=647 dev=proc ino=42401794 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:udev_t tclass=dir audit(1114592249.862:0): avc: denied { search } for name=649 dev=proc ino=42532866 scontext=sy stem_u:system_r:kernel_t tcontext=system_u:system_r:hotplug_t tclass=dir what's wrong? Your using Rawhide :^) Update to latest policy and alot of these should be fixed. Kernel_t needs to have unconfined privs. Dan |