[Cialug] apache security question
Jeffrey Ollie
jeff at ocjtech.us
Wed Jul 2 14:39:16 CDT 2008
On Wed, Jul 2, 2008 at 1:54 PM, chris <chris at ia.gov> wrote:
>
> Something else to be aware of that may be/have been biting you. When you
> have selinux enabled and create files in some
> directory outside of your web root, the files inherit the security context
> of the parent directories. If you then move
> the file into your webroot, it may give a 403 on access by the httpd
> process. If the file is created inside the webroot
> it will inherit the correct context and serve up ok. Centos > 4.x has
> selinux enabled by default I think.
You can fix selinux labels by running "restorecon -vr /var/www/html"
as root. It should output a message if it has to change anything.
Jeff
More information about the Cialug
mailing list