Download
2011-03-04, 19:20:50
I still cannot access GetSimple in localhost server.
I tried chmod 755 data as instructed.
I also get SELinux error message:
>>>>>>>
Summary:
SELinux prevented httpd (/usr/sbin/httpd) setattr access to
/var/www/html/GetSimple/data.
Detailed Description:
SELinux prevented httpd setattr access to /var/www/html/GetSimple/data. httpd
scripts are not allowed to write to content without explicit labeling of all
files. If /var/www/html/GetSimple/data is writable content. it needs to be
labelled httpd_sys_rw_content_t or if all you need is append you can label it
httpd_sys_ra_content_t. Please refer to 'man httpd_selinux' for more information
on setting up httpd and selinux.
Allowing Access:
You can alter the file context by executing chcon -R -t httpd_sys_rw_content_t
'/var/www/html/GetSimple/data' You must also change the default file context
files on the system in order to preserve them even on a full relabel. "semanage
fcontext -a -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'"
Fix Command:
chcon -R -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'
Additional Information:
Source Context system_u
ystem_r:httpd_t0
Target Context unconfined_u:object_r:httpd_sys_content_t0
Target Objects /var/www/html/GetSimple/data [ dir ]
Source httpd
Source Path /usr/sbin/httpd
Port <Unknown>
Host Chris-PC
Source RPM Packages httpd-2.2.17-1.fc14
Target RPM Packages
Policy RPM selinux-policy-3.9.7-31.fc14
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Plugin Name httpd_write_content
Host Name Chris-PC
Platform Linux Chris-PC 2.6.35.6-45.fc14.i686 #1 SMP Mon
Oct 18 23:56:17 UTC 2010 i686 i686
Alert Count 189
First Seen Thu 03 Mar 2011 22:06:52 GMT
Last Seen Fri 04 Mar 2011 08:52:58 GMT
Local ID 1112dc6c-81d4-4166-ad7c-a53fbc45aaa4
Line Numbers
Raw Audit Messages
node=Chris-PC type=AVC msg=audit(1299228778.423:292): avc: denied { setattr } for pid=1555 comm="httpd" name="data" dev=dm-0 ino=1054326 scontext=system_uystem_r:httpd_t0 tcontext=unconfined_u:object_r:httpd_sys_content_t0 tclass=dir
node=Chris-PC type=SYSCALL msg=audit(1299228778.423:292): arch=40000003 syscall=15 success=no exit=-13 a0=2c118a4 a1=1ff a2=51652e8 a3=2c0b78c items=0 ppid=1536 pid=1555 auid=4294967295 uid=48 gid=48 euid=48 suid=48 fsuid=48 egid=48 sgid=48 fsgid=48 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=system_uystem_r:httpd_t0 key=(null)
<<<<<<<<<<<
I ran the fix command chcon -R -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'
but still cannot get to install for GetSimple.
Help greatly appreciated to fix this-grateful for helpful reply if there is anyone in the forum?!
Many thanks
I tried chmod 755 data as instructed.
I also get SELinux error message:
>>>>>>>
Summary:
SELinux prevented httpd (/usr/sbin/httpd) setattr access to
/var/www/html/GetSimple/data.
Detailed Description:
SELinux prevented httpd setattr access to /var/www/html/GetSimple/data. httpd
scripts are not allowed to write to content without explicit labeling of all
files. If /var/www/html/GetSimple/data is writable content. it needs to be
labelled httpd_sys_rw_content_t or if all you need is append you can label it
httpd_sys_ra_content_t. Please refer to 'man httpd_selinux' for more information
on setting up httpd and selinux.
Allowing Access:
You can alter the file context by executing chcon -R -t httpd_sys_rw_content_t
'/var/www/html/GetSimple/data' You must also change the default file context
files on the system in order to preserve them even on a full relabel. "semanage
fcontext -a -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'"
Fix Command:
chcon -R -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'
Additional Information:
Source Context system_u
ystem_r:httpd_t0Target Context unconfined_u:object_r:httpd_sys_content_t
0Target Objects /var/www/html/GetSimple/data [ dir ]
Source httpd
Source Path /usr/sbin/httpd
Port <Unknown>
Host Chris-PC
Source RPM Packages httpd-2.2.17-1.fc14
Target RPM Packages
Policy RPM selinux-policy-3.9.7-31.fc14
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Plugin Name httpd_write_content
Host Name Chris-PC
Platform Linux Chris-PC 2.6.35.6-45.fc14.i686 #1 SMP Mon
Oct 18 23:56:17 UTC 2010 i686 i686
Alert Count 189
First Seen Thu 03 Mar 2011 22:06:52 GMT
Last Seen Fri 04 Mar 2011 08:52:58 GMT
Local ID 1112dc6c-81d4-4166-ad7c-a53fbc45aaa4
Line Numbers
Raw Audit Messages
node=Chris-PC type=AVC msg=audit(1299228778.423:292): avc: denied { setattr } for pid=1555 comm="httpd" name="data" dev=dm-0 ino=1054326 scontext=system_u
ystem_r:httpd_t0 tcontext=unconfined_u:object_r:httpd_sys_content_t0 tclass=dirnode=Chris-PC type=SYSCALL msg=audit(1299228778.423:292): arch=40000003 syscall=15 success=no exit=-13 a0=2c118a4 a1=1ff a2=51652e8 a3=2c0b78c items=0 ppid=1536 pid=1555 auid=4294967295 uid=48 gid=48 euid=48 suid=48 fsuid=48 egid=48 sgid=48 fsgid=48 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=system_u
ystem_r:httpd_t0 key=(null)<<<<<<<<<<<
I ran the fix command chcon -R -t httpd_sys_rw_content_t '/var/www/html/GetSimple/data'
but still cannot get to install for GetSimple.
Help greatly appreciated to fix this-grateful for helpful reply if there is anyone in the forum?!
Many thanks
