Jan-Frode Myklebust wrote:
On 2007-04-22, Nikolaos Mitsis <[EMAIL PROTECTED]> wrote:
Below is the output from audit2allow. I created a local module policy
but that didn't help. The rules seems to be very generic and I can't
find any connection to the suid-binary.
The audit2allow-ouput looks like first denials only. Could you try running
your sudo from php with selinux in permissive modus, to catch all denials?
I'd do:
setenforce 0
echo "" > /var/log/audit/audit.log
/etc/init.d/auditd restart
<run the php-sudo from web>
setenforce 1
cat /var/log/audit/audit.log|audit2allow -m httpd_sudo
That worked.
Thank you very much!
-jf
-N.
_______________________________________________
rhelv5-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/rhelv5-list
