Hello,
Running httpd-2.2.3-43.el5.centos.3 on CentOS release 5.5 (Final), I have :
$ ps -Ze LABEL PID TTY TIME CMD user_u:system_r:httpd_t 12833 ? 00:00:00 httpd
Is it normal for httpd to have this context (user_u:system_r:httpd_t) ? I was expecting system_u:system_r:httpd_t.
And if it is not normal, is it because I have restarted httpd by hand (service httpd restart), or because I have broken something in my configuration ?
Thanks,
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 01/14/2011 10:22 AM, Philippe Naudin wrote:
Hello,
Running httpd-2.2.3-43.el5.centos.3 on CentOS release 5.5 (Final), I have :
$ ps -Ze LABEL PID TTY TIME CMD user_u:system_r:httpd_t 12833 ? 00:00:00 httpd
Is it normal for httpd to have this context (user_u:system_r:httpd_t) ? I was expecting system_u:system_r:httpd_t.
And if it is not normal, is it because I have restarted httpd by hand (service httpd restart), or because I have broken something in my configuration ?
Thanks,
Yes this is normal, this indicates that some one running as user_u, restarted the daemon. system_u would indicate that it was started at boot.
The user component of SELinux is pretty much ignored when it comes to access control.
-
Daniel J Walsh -
Philippe Naudin