Bug 658710
Summary: | SELinux is preventing /usr/bin/php-cgi "setattr" access on /tmp. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Capone <capone> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 14 | CC: | capone, dwalsh, mgrepl |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | setroubleshoot_trace_hash:8847b192056bca0e14c95c6de3e1074784aa0d4283b932b17d9511a6428547f0 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2010-12-01 19:50:27 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Capone
2010-12-01 03:23:43 UTC
Do you have a script changing file mode on /tmp directory? I believe it is RUtorrent causing this...how do I allow it? Capone, did anything actually get blocked? I think you can dontaudit this and everything will work fine. httpd running as uid 500 is not going to be allowed to change the attributes of /tmp because of DAC rules anyways. # grep tmp_t /var/log/audit/audit.log | audit2allow -D -M myhttp # semodule -i myhttp.pp Will get it to stop complaining. Worked Perfectly. It finally stopped complaining...RUTorrent still doesn't work..but that's for another forum! Thanks! |