Re: Data access to two daemon

From: Stephen Smalley <sds_at_nospam>
Date: Wed Aug 22 2007 - 12:50:38 GMT
To: Arthur Pemberton <pemboa@gmail.com>

On Tue, 2007-08-21 at 15:55 -0500, Arthur Pemberton wrote:
> I have a personal server setup with SELinux in targeted mode.
>
> I would like to allow rw access over these files to Samba, and ro
> access to these files to httpd.
>
> In my current setup, SELinux requires the security context of the
> respective daemon to allow access to them.
>
> Since I gave Samba access more priority, the current context is:
> root:object_r:samba_share_t
>
> The files are not owned by root, they are currently chowned pembo13:comrades.
>
> Please advise on the best method to arrange for the access that I seem
> to require.

man samba_selinux seems to suggest using public_content_rw_t on the file and setting the allow_smbd_anon_write boolean. -- Stephen Smalley National Security Agency -- fedora-selinux-list mailing list fedora-selinux-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-selinux-list

This message: [ Message body ]
Next message: John Griffiths: "Re: Re: Data access to two daemon"
Previous message: Stephen Smalley: "Re: F7 mls enforcing failed login and recursive fault"
In reply to: Arthur Pemberton: "Data access to two daemon"
Next in thread: John Griffiths: "Re: Re: Data access to two daemon"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]