I'm getting AVCs, and as I've mentioned before, the report from sealert is *wrong*.
siteminder is running as root:system_r:httpd_sys_script_t /etc/httpd/conf, and siteminder's configuration file, are both system_u:object_r:httpd_config_t, and the configuration file is rw by root, and r by group root.
sealert keeps trying to tell me to set httpd_unified on, which I've had on.
Clues on what I actually have to change to let siteminder not cause selinux AVCs? (The system is running in permissive mode, and we're CentOS 5.7 (which will get updated to 5.8 when I can....)
mark
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 03/29/2012 11:25 AM, m.roth@5-cent.us wrote:
I'm getting AVCs, and as I've mentioned before, the report from sealert is *wrong*.
siteminder is running as root:system_r:httpd_sys_script_t /etc/httpd/conf, and siteminder's configuration file, are both system_u:object_r:httpd_config_t, and the configuration file is rw by root, and r by group root.
sealert keeps trying to tell me to set httpd_unified on, which I've had on.
Clues on what I actually have to change to let siteminder not cause selinux AVCs? (The system is running in permissive mode, and we're CentOS 5.7 (which will get updated to 5.8 when I can....)
mark
-- selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux
Could you attach the alert? and the AVC.
selinux@lists.fedoraproject.org