
Hi On Tue 20-Sep-2005 at 12:43:00PM +0200, Christian Schoepplein wrote:
On Di, Sep 20, 2005 at 10:26:23 +0100, Chris Croome wrote:
On Mon 19-Sep-2005 at 03:44:41PM +0100, Chris Croome wrote:
I'm installing OTRS on CentOS 4 (RHEL4)
So far this is what I have doen to make SELinux work OK with OTRS:
1. Add the following to /etc/selinux/targeted/src/policy/domains/program/apache.te
allow httpd_t policy_src_t:dir search; allow httpd_t usr_t:dir write; allow httpd_t usr_t:dir add_name; allow httpd_t usr_t:file create;
2. cd /etc/selinux/targeted/src/policy; make load
3. Restart httpd
Thanks for this short description! I'll try to create a FAQ article about this for CentOS as soon as possible.
CentOS 4 should be exactly the same as Red Hat Enterprise 4 and I expect
that Fedora Core 3 and 4 will be more-or-less the same...
The other thing that could go in the FAQ is how to get the rules above
-- basically if you do this after SELinux stops something from
happening:
tail /var/log/messages | audit2allow
Then you get back a rule like the ones above, keep doing this and adding
rules till stuff works... :-)
Chris
--
Chris Croome