We run Moin 1.9.4 on a RHEL 6.2 Linux server which was upgraded to RHEL 6.3. After the upgrade we saw SELinux permission errors in the Apache errorlog:
python: can't open file '/var/www/wiki/cgi-bin/moin.cgi': [Errno 13] Permission denied This is an issue with SELinux (as determined by turning off SELinux). There exists a Moin HowTo http://moinmo.in/HowTo/FedoraSELinux, but it doesn't seem to help any on RHEL6 Linux. After much googling and experimentation I found the following: SOLUTION: setsebool -P httpd_enable_cgi=on chcon -t httpd_unconfined_script_exec_t /.../cgi-bin/moin.cgi Comments: The first line allows CGI scripts in the first place - that's simple. The second line disables SELinux completely for the moin.cgi script, see "man httpd_selinux" (on Fedora this man-page contains more details). The SELinux context httpd_sys_script_exec_t for moin.cgi recommended elsewhere simply doesn't work on RHEL 6.3. I hope this may help others with RHEL6 Moin servers. Best regards, Ole -- Ole Holm Nielsen Department of Physics, Technical University of Denmark ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Moin-user mailing list Moin-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/moin-user
