Choosing A Webhost:
A web hosting service is a type of Internet hosting service that allows individuals and organizations to provide their own website accessible via the World Wide Web. Web hosts are companies that provide space on a server they own for use by their clients as well as providing Internet connectivity, typically in a data center. Web hosts can also provide data center space and connectivity to the Internet for servers they do not own to be located in their data center, called colocation. more...
|
Vsftpd in a chrooted environement: msg#00059
|
Subject: |
Vsftpd in a chrooted environement |
Hi,
i run vsftpd in a chrooted environement. Since yesterday, again in
targeted mode. Loggin in, gives a 500 OOPS - Message
according to audit.log, the following is missing:
type=AVC msg=audit(1123825815.048:14086489): avc: denied {
dac_override } for pid=21576 comm="vsftpd" capability=1
scontext=system_u:system_r:ftpd_t tcontext=system_u:system_r:ftpd_t
tclass=capability
i inserted in local.te the following (according to audit2allow)
allow ftpd_t self:capability { dac_override dac_read_search };
...and now it works. Can anybody check this for other securiy holes? Or
did i just do an error in my config now? using the ftpd_home...-boolean,
this did not help, nor did ftpd_disable_trans=1 (what was not my wish)
Thanks for your reply
Roger
|
| |
