![]() ~]# stat -c "%C %n" /var/www/html/vhost1/rwstorage ~]# restorecon /var/www/html/vhost1/rwstorage Unconfined_u:object_r:httpd_sys_content_t:s0 /var/www/html/vhost1/rwstorage Unconfined_u:object_r:httpd_sys_content_t:s0 /var/www/html/vhost1/ However, the restorecon is always required, e.g.: ~]# mkdir -p /var/www/html/vhost1/rwstorage How can this be done?Īn fcontext rule like the following makes it possible for restorecon to set /var/www/html/*/rwstorage files to the httpd_sys_rw_content_t type: semanage fcontext -a -t httpd_sys_rw_content_t "/var/www/html(/.*)?/rwstorage" The Red Hat Enterprise Linux (RHEL) 7 SELinux User's and Administrator's Guide details a new file name transition feature and gives some policy examples but doesn't make it clear how a sysadmin could easily add a new rule.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |