Bug 170998 - Fedora Extras packages rt3 and perl-HTML-Mason don't work with SELinux
Fedora Extras packages rt3 and perl-HTML-Mason don't work with SELinux
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Daniel Walsh
Depends On:
Blocks: 169247
  Show dependency treegraph
Reported: 2005-10-17 04:56 EDT by Paul Howarth
Modified: 2007-11-30 17:11 EST (History)
1 user (show)

See Also:
Fixed In Version: policy-
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2005-11-03 18:04:51 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Paul Howarth 2005-10-17 04:56:10 EDT
Description of problem:
Fedora Extras packages rt3 and perl-HTML-Mason are web applications that, like
many others, need the web server to write cache files. The directories involved are:


Current policy does not allow this. The following additions to 
file_contexts/program/apache.fc should take care of these:

/var/cache/mason(/.*)?	system_u:object_r:httpd_cache_t
/var/cache/rt3(/.*)?	system_u:object_r:httpd_cache_t

Could these changes be included in the next errata update please?

Related Bugs:
Bug 169247 - Review request: rt3 - Request tracker 3
Bug 166063 – Review Request: perl-HTML-Mason
Comment 1 Ville Skyttä 2006-01-29 18:13:00 EST
I was looking for some examples, and came accross this bug.  But I don't see the
strings "rt3" or "mason" in the whole selinux-policy source tree in Rawhide. 
Have  they moved into another package or been dropped or...?  httpd_cache_t
seems to be assigned only to
/var/cache/{httpd,mod_ssl,php-eaccelerator,php-mmcache,ssl*.sem} nowadays.
Comment 2 Daniel Walsh 2006-01-30 10:02:36 EST
Looks like this got dropped from Reference policy.  I will add it back tonight.
 Good Catch.



Note You need to log in before you can comment on or make changes to this bug.