When starting apache under selinux enforcing mode it fails because of improper labeling of /var/cache/apache-mm, and perhaps /var/cache/apache. output of ls -Z: drwxr-xr-x apache apache system_u:object_r:var_t apache drwxr-xr-x root root system_u:object_r:var_t apache-mm Apache fails to start up as it has no write access to apache-mm, so this should be imho: drwxr-xr-x apache apache system_u:object_r:httpd_cache_t apache drwxr-xr-x root root system_u:object_r:httpd_cache_t apache-mm I had these problems for both apache 1.3.29-r2 and 2.0.49-r1 Reproducible: Always Steps to Reproduce: 1. Set ACCEPT_KEYWORDS to ~x86 2. Set /etc/make.profile to selinux/2004.1/x86 3. Upgrade according to the instructions shown prior to step 2 4. Upgrade to selinux-apache-20040426 5. load the new policy 6. rlpkg apache 7. restart apache Actual Results: Apache won
When starting apache under selinux enforcing mode it fails because of improper labeling of /var/cache/apache-mm, and perhaps /var/cache/apache. output of ls -Z: drwxr-xr-x apache apache system_u:object_r:var_t apache drwxr-xr-x root root system_u:object_r:var_t apache-mm Apache fails to start up as it has no write access to apache-mm, so this should be imho: drwxr-xr-x apache apache system_u:object_r:httpd_cache_t apache drwxr-xr-x root root system_u:object_r:httpd_cache_t apache-mm I had these problems for both apache 1.3.29-r2 and 2.0.49-r1 Reproducible: Always Steps to Reproduce: 1. Set ACCEPT_KEYWORDS to ~x86 2. Set /etc/make.profile to selinux/2004.1/x86 3. Upgrade according to the instructions shown prior to step 2 4. Upgrade to selinux-apache-20040426 5. load the new policy 6. rlpkg apache 7. restart apache Actual Results: Apache won´t start. Expected Results: Apache should start normally.
Created attachment 30228 [details, diff] Quick fix to make apache-1.3.29-r2 run.
this one's fixed, the bug just got by me
