[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Allowing vsftpd access for user's home directory

From: Paul Howarth <paul city-fan org>
To: Ketut Mahaindra <kmahaindra axalto com>
Cc: fedora-selinux-list redhat com
Subject: Re: Allowing vsftpd access for user's home directory
Date: Thu, 11 May 2006 06:51:51 +0100

On Thu, 2006-05-11 at 13:17 +0800, Ketut Mahaindra wrote:
> Hello all,
> 
> I have installation of FC5.
> I want to make vsftpd run with chroot environment of user home directory.
> So far it does not work because SELinux prevents the vsftpd to access the
> home directory.
> 
> What's the best way to configure SELinux for this purpose?
> I don't want to disable it.
> I have been googling it around but so far has not came up with any easy
> solution.
> 
> Any help will be appreciated.
> 
> P.S.
> - I have the following AVC error messages:
>   avc:  denied  { dac_override } for  pid=9099 comm="vsftpd" capability=1
> scontext=system_u:system_r:ftpd_t:s0 tcontext=system_u:system_r:ftpd_t:s0
> tclass=capability
>   avc:  denied  { dac_read_search } for  pid=9099 comm="vsftpd" capability=2
> scontext=system_u:system_r:ftpd_t:s0 tcontext=system_u:system_r:ftpd_t:s0
> tclass=capability  

Have you set the ftp_home_dir boolean as suggested in "man
ftpd_selinux"?

Paul.

Follow-Ups:
- RE: Allowing vsftpd access for user's home directory
  - From: Ketut Mahaindra

References:
- Allowing vsftpd access for user's home directory
  - From: Ketut Mahaindra

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]