Hi. Has anyone figured out how to get Bugzilla working on CentOS 5.2
WITHOUT TURNING OFF SELINUX?

I've run

chcon -R --reference=/var/www/html /path/to/bugzilla

and added the following module (generated by audit2allow), but am
still getting errors in my Web browser tryinig to use Bugzilla:

Software error:
Can't connect to the database.
Error: could not connect to server: Permission denied
Is the server running on host "localhost" and accepting
TCP/IP connections on port 5432?
Is your database installed and up and running?
Do you have the correct username and password selected in localconfig?


And there is an AVC denial as well:

type=AVC msg=audit(1225832104.970:405): avc: denied { connect } for
pid=30831 comm="index.cgi"
scontext=user_u:system_r:httpd_sys_script_t:s0
tcontext=user_u:system_r:httpd_sys_script_t:s0 tclass=tcp_socket


Here is the module I added:

module local 1.0;

require {
type httpd_sys_script_t;
class tcp_socket setopt;
}

#============= httpd_sys_script_t ==============
allow httpd_sys_script_t self:tcp_socket setopt;
[root@hwd-ddc-app-prod01 selinux]#


httpd_sys_script_t ==============
allow httpd_sys_script_t self:tcp_socket setopt;




I've tried running the AVC denial message through audit2allow again,
but it just produced the same module that I already have loaded.

Any suggestions?

Thanks,
Aleksey



--
Aleksey Tsalolikhin
UNIX System Administrator
"I get stuff done!"
http://www.lifesurvives.com/
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos