dan wrote:
>ricky writes:
>>> On Jun 25, 2015, at 2:00 PM, dan moylan <[email protected]> wrote:
>>>
>>> richard morse writes:
>>>> SELinux?
>>>
>>>> On Jun 25, 2015, at 1:30 PM, dan moylan <[email protected]> wrote:
>>>> .
>>>> .
>>>> .
>>> oh. sounds like a good lead. i don't want to abuse your
>>> generosity but after prowling through the selinux man pages
>>> and looking at the files in /etc/selinux i'm somewhat
>>> overwhelmed. do you have any specific suggestions as to how
>>> i might fiddle selinux to fix my problem?
>> At least in CentOS, you can start out by turning off SELinux
>> enforcing (`setenforce`), and see if things work with
>> permissive mode. If they do, you know that it was the
>> problem.
>> Also, `sestatus` to find out if SELinux is on.
>> I don’t know what distro you’re running, so the commands
>> might be a bit different.
>tnx, running fc21.
>root ~[394] setenforce 0
>root ~[395] sestatus
>SELinux status: enabled
>SELinuxfs mount: /sys/fs/selinux
>SELinux root directory: /etc/selinux
>Loaded policy name: targeted
>Current mode: permissive
>Mode from config file: enforcing
>Policy MLS status: enabled
>Policy deny_unknown status: allowed
>Max kernel policy version: 29
>unfortunately, the error persists.
not any longer! it was two problems:
1st: in my code:
$fll = "/home/moylan/www/cgi-bin/stuff/moyts6.log";
$fhl = new FileHandle ();
$fhl->open ($fll, "w") or die "couldn't open $fll";
$fhl->printf ("# MOYTS6\n\n");
it was apache trying to write to stuff with permissions
755 owned by moylan.moylan. i added moylan to apache groups
and set stuff permissions to 775 and that got fixed.
2nd: selinux permissive mode was required.
when those two things were done the script worked just fine.
now, do you have any suggestions as to how i might adjust
selinux for my particular problem without putting it in the
permissive mode?
tia,
ole dan
j. daniel moylan
84 harvard ave
brookline, ma 02446-6202
617-777-0207 (cel)
[email protected]
www.moylan.us
[no html pls]
_______________________________________________
Boston-pm mailing list
[email protected]
http://mail.pm.org/mailman/listinfo/boston-pm
