On 2007-04-22, Nikolaos Mitsis <[EMAIL PROTECTED]> wrote:
>
> Below is the output from audit2allow. I created a local module policy
> but that didn't help. The rules seems to be very generic and I can't
> find any connection to the suid-binary.
The audit2allow-ouput looks like first denials only. Could you try running
your sudo from php with selinux in permissive modus, to catch all denials?
I'd do:
setenforce 0
echo "" > /var/log/audit/audit.log
/etc/init.d/auditd restart
<run the php-sudo from web>
setenforce 1
cat /var/log/audit/audit.log|audit2allow -m httpd_sudo
-jf
_______________________________________________
rhelv5-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/rhelv5-list
