New subject: Apache Httpd on FC4 screwedup? FrontPagewill notwork w/ochanges.

Thursday, 3 November 2005

...
From: fedora-list-bounces(a)redhat.com
[mailto:fedora-list-bounces@redhat.com]On Behalf Of Rahul Sundaram
Sent: Thursday, November 03, 2005 2:16 PM
To: For users of Fedora Core releases
Subject: Re: Apache Httpd on FC4 screwedup? FrontPage will not work w/o changes.

Hi

>I discovered the problem.  The /usr/bin/system-config-securitylevel
>is the command-level program (which is what I was using) and this
>is NOT the same as the one suppled via the Gnome-Menu of
>Desktop->System Settings->Security Level as this was the
>GUI for which the SElinux tab does appear.  Duh-O
>  
>
It should be exactly the same program 
Well, if you run the command-line as I did, it shows up
as a curses based text-screen so that is why I dont see
tabs so the SeLinux tab does not appear.  I can run the
the gui one so as long as I get it from the drop-down
menus.

...

>Anyway, in any case, I have disabled SElinux protections
>for httpd and Samba.  Both was too difficult to determine
>as the httpd had something to do with the
><VirtualHost _default_:8090> for FrontPage and I could
>not figure it out, and as for Samba, I could get the shares
>to work, except that the contents refused to appear - very
>wierd and non of the combinations I tried worked.  Nevertheless
>the rest of the system is running under SElinux.
>
>Thanks for the leads.
>Dan
>
Like I said you can post the AVC denied messages in /var/log/audit (if 
you have audit daemon enabled) or /var/log/messages to fedora-selinux 
list to help figure out the issue here 
Here it is!  I also sent this to fedora-selinux-list(a)redhat.com

httpd:

type=AVC msg=audit(1131056930.757:251): avc:  denied  { name_bind } for  pid=4946
comm="httpd" src=8090 scontext=root:system_r:httpd_t
tcontext=system_u:object_r:port_t tclass=tcp_socket
type=SYSCALL msg=audit(1131056930.757:251): arch=40000003 syscall=102 success=no exit=-13
a0=2 a1=bfc779f0 a2=750218 a3=8b8da58 items=0 pid=4946 auid=4294967295 uid=0 gid=0 euid=0
suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="httpd"
exe="/usr/sbin/httpd"
type=SOCKADDR msg=audit(1131056930.757:251):
saddr=0A001F9A000000000000000000000000000000000000000000000000
type=SOCKETCALL msg=audit(1131056930.757:251): nargs=3 a0=5 a1=8b8da84 a2=1c

...

regards
Rahul

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.362 / Virus Database: 267.12.7/159 - Release Date: 11/2/2005

RE: Apache Httpd on FC4 screwedup? FrontPagewill notwork w/ochanges.