On Tue, Feb 22, 2011 at 9:00 AM, Daniel J Walsh dwalsh@redhat.com wrote:
On 02/21/2011 10:19 PM, Scott Gifford wrote:
[ ... ]
Yeah, true, but I'm not sure how to cause them to have no category either, apart from using setxattr.
I think if you do the file context correctly you can run restorecon -F to fix the label. If your CGI were in Code or python, you could use setfscreatecon, to set the label automatically.
My code is in Perl, so I just printed the NULL-terminated context name to:
/proc/$$/attr/fscreate
It required that I give the process context setfscreate permission, like this:
allow httpd_ppi_portal_app_t self:process setfscreate;
Now it is working great, thanks!
-----Scott.