485111 – samba not able to access users' public_html directory

Bug 485111 - samba not able to access users' public_html directory

Summary: samba not able to access users' public_html directory

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	selinux-policy
Sub Component:
Version:	5.2
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Daniel Walsh
QA Contact:	BaseOS QE
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2009-02-11 16:50 UTC by Orion Poplawski
Modified:	2013-01-25 15:33 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2009-09-02 07:59:45 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2009:1242	0	normal	SHIPPED_LIVE	selinux-policy bug fix update	2009-09-01 08:32:34 UTC

Description Orion Poplawski 2009-02-11 16:50:51 UTC

Description of problem:

Testing with selinux-policy-2.4.6-209.el5, getting:

type=AVC msg=audit(1234370785.967:605961): avc:  denied  { search } for  pid=18286 comm="smbd" name="public_html" dev=dm-1 ino=19610601 scontext=root:system_r:smbd_t:s0 tcontext=user_u:object_r:httpd_sys_content_t:s0 tclass=dir                            
type=AVC msg=audit(1234370785.967:605962): avc:  denied  { read } for  pid=18286 comm="smbd" name="public_html" dev=dm-1 ino=19610601 scontext=root:system_r:smbd_t:s0 tcontext=user_u:object_r:httpd_sys_content_t:s0 tclass=dir                              
type=AVC msg=audit(1234370785.967:605963): avc:  denied  { getattr } for  pid=18286 comm="smbd" path="/home/kwan/public_html/linktoterms.html" dev=dm-1 ino=19612759 scontext=root:system_r:smbd_t:s0 tcontext=user_u:object_r:httpd_sys_content_t:s0 tclass=file

Comment 1 Daniel Walsh 2009-02-12 14:33:48 UTC

Fixed in selinux-policy-2.4.6-211.el5

Comment 5 Orion Poplawski 2009-03-16 15:10:16 UTC

Confirmed fixed for me.  Thanks!

Comment 9 errata-xmlrpc 2009-09-02 07:59:45 UTC

An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2009-1242.html

Note You need to log in before you can comment on or make changes to this bug.