On 08/20/2016 12:00 PM, Walter H. wrote: > how could it be achieved to run > X > from a CGI script on a system where SELinux is set to ENFORCING? https://www.centos.org/docs/5/html/Deployment_Guide-en-US/sec-sel-building-policy-module.html Set enforcing mode to "permissive". Run the program you want to work under enforcing mode. Collect the AVC entries from /var/log/audit/audit.log. Use "audit2allow -M" to create a new module. Install the module. Set enforcing mode to "enforcing."