[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [RFC] /var versus /srv



On Wednesday 26 September 2007 23:28:11 Lamont Peterson wrote:
> Besides, SELinux won't care.  You simply assign the right types to the
> per-site www/, ftp/, etc. directories and it will just work. 

Assigning the right types to the directory will probably stop avc denials that 
wanted to do file search - IOW a directory search. The files contained in 
those directories will still likely have the wrong type.

If you are counting on the semantics of "cp" to preserve attributes, that is a 
fragile assumption. The first time a relabel occurs, the file and directory 
contexts will be reset to the defaults. You will either need to adjust policy 
or create a lot of entries in /etc/selinux/restorecond.conf.

-Steve


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]