On Thu, 2005-11-03 at 15:17 -0800, Daniel B. Thurman wrote: > >From: fedora-list-bounces@xxxxxxxxxx > >[mailto:fedora-list-bounces@xxxxxxxxxx]On Behalf Of Rahul Sundaram > >Like I said you can post the AVC denied messages in /var/log/audit (if > >you have audit daemon enabled) or /var/log/messages to fedora-selinux > >list to help figure out the issue here > > Here it is! I also sent this to fedora-selinux-list@xxxxxxxxxx > > httpd: > > type=AVC msg=audit(1131056930.757:251): avc: denied { name_bind } for pid=4946 comm="httpd" src=8090 scontext=root:system_r:httpd_t tcontext=system_u:object_r:port_t tclass=tcp_socket If you want httpd to be able to listen on port 8090, and you have the policy sources installed, you cam do this by adding the following line to /etc/selinux/targeted/src/policy/net_contexts: portcon tcp 8090 system_u:object_r:http_port_t and doing: # make -C /etc/selinux/targeted/src/policy reload Paul. -- Paul Howarth <paul@xxxxxxxxxxxx>
