| Summary: | Mythweb cannot write to /usr/share/mythweb/data in enforcing mode | ||
|---|---|---|---|
| Product: | Fedora | Reporter: | Josh <joshborke+rpmfusion> |
| Component: | mythtv | Assignee: | Jarod Wilson <jarod> |
| Status: | RESOLVED EXPIRED | ||
| Severity: | normal | CC: | lists, pembo13, tdfischer |
| Priority: | P5 | ||
| Version: | 11 | ||
| Hardware: | All | ||
| OS: | GNU/Linux | ||
| namespace: | |||
|
Description
Josh
2009-06-15 19:01:12 CEST
Perhaps the better solution would be to move the data directory to /var/www/mythweb per comment #3 of bug 652 and then modify /etc/httpd/conf.d/mythweb.conf. That way it doesn't require selinux modifications The mythweb data dir was explicitly moved into /usr/share/ because packages putting stuff into /var/www/html explicitly violates the Fedora packaging guidelines. In other words, not going to move it back. Many other web apps do similar, just need to take the time to figure out how they handle these sort of issues... Too many explicits... But yeah: https://fedoraproject.org/wiki/Packaging/Guidelines#Web_Applications I would recommend putting /usr/share/mythweb/data into /var/lib/mythweb and labeling it httpd_sys_content_rw_t dwalsh has agreed to place rules into the selinux-policy if we are able to specify where we are going to place the r/o content, r/w content and cgi scripts. So, my thoughts are: /var/lib/mythweb -> r/w content /usr/share/mythweb -> r/o content no cgi scripts? I'm not sure what the purpose of /usr/share/mythweb/php_sessions is, if it needs to be writable by mythweb in order to function better or if it is not needed at all. I'd like to help in whatever way possible. Chris, I'd like your thoughts on this, since mythweb is your baby... No response yet? This bug is still around of course. RPMFusion is no longer releasing updates for this version of Fedora. This bug will be set to RESOLVED:EXPIRED next week to reflect this. If the problem persists after upgrading to the latest version of Fedora, please update the version field of this bug (and re-open it if it has been closed). Setting to RESOLVED:EXPIRED since RPMFusion is no longer releasing updates for this version of Fedora. |