[CentOS] SELinux and access across 'similar types'

Daniel J Walsh dwalsh at redhat.com
Mon Jan 9 16:45:26 UTC 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SELinux has no idea what the labels are in /tmp, so restorecon will
not change the labels.  It would be best to just remove the content
from /tmp and allow new content to be created.  If you want the
content to be accessible from apache, you could change it to httpd_tmp_t

chcon -t httpd_tmp_t /tmp/PATH

I believe in treating /tmp as temporary and cleaning it out on reboot,
or running it as tmpfs.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk8LGaYACgkQrlYvE4MpobPVQwCgxO5XHZkQhrgmLfbhcPIjQbcK
ISoAn183Fc+6RZCY4cPsW2nItMYDq14D
=AFEz
-----END PGP SIGNATURE-----



More information about the CentOS mailing list