[CentOS] SELinux and access across 'similar types'

Fri Jan 6 12:11:57 UTC 2012
Philippe Naudin <philippe.naudin at supagro.inra.fr>

Le ven 06 jan 2012 02:41:02 CET, Bennett Haselton a écrit:

> On 1/6/2012 2:24 AM, Philippe Naudin wrote:
> > Apache running as "init_t" is a call for troubles.
> Is it?  OK, any idea what caused that and how to fix it?

No, sorry. Your httpd comes from CentOS ?

Afaik, you should not have any process running in context init_t except
init itself. If "ps awuxZ | grep [i]nit_t" returns more than only init
and httpd, your problem is likely to be more complicated than a broken
configuration of apache.

If only httpd is concerned, check "ls -Z /usr/sbin/httpd" :
-rwxr-xr-x  root root system_u:object_r:httpd_exec_t   /usr/sbin/httpd 
and try eventually "yum reinstall httpd" ...

-- 
Philippe Naudin
UMR MISTEA : Mathématiques, Informatique et STatistique pour 
l'Environnement et l'Agronomie
INRA, bâtiment 29   -   2 place Viala   -   34060 Montpellier cedex 2
tél: 04.99.61.26.34, fax: 04.99.61.29.03, mél: naudin at supagro.inra.fr