On Fri, Mar 16, 2018 at 6:52 AM, Kevin Walzer <k...@codebykevin.com> wrote:
> On 3/16/18 7:06 AM, Richard Hipp wrote: > >> it seems good to move the >> Fossil binary outside of your web hierarchy. Perhaps put it in >> /home/username/bin. >> > > Moving the fossil binary into a different directory helped That sounds like you were running into SELinux or some other MAC system. It is common for these systems to be fairly strictly configured for the standard cases to reduce security problems. In this case, your MAC system "knows" that the web document root should have only read-only files, so it refuses to allow writes to that tree by the web server, and it refuses to allow the web server to execute programs in that tree. Although these defaults happened to be incorrect for your particular use case, it is usually better to conform to the MAC system's default expectations, rather than to reconfigure it to match your wishes. Security defaults are usually set that way for good reasons, so unless you've got a lot of expertise in this area, you're probably not in a good position to second-guess the MAC system's defaults.
_______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
