2005-11-14 22:38:14 +00:00
|
|
|
# temporary hack till genhomedircon is fixed
|
|
|
|
ifdef(`targeted_policy',`
|
|
|
|
HOME_DIR/((www)|(web)|(public_html))(/.+)? gen_context(system_u:object_r:httpd_user_content_t,s0)
|
|
|
|
',`
|
2005-10-06 19:33:06 +00:00
|
|
|
HOME_DIR/((www)|(web)|(public_html))(/.+)? gen_context(system_u:object_r:httpd_ROLE_content_t,s0)
|
2005-11-14 22:38:14 +00:00
|
|
|
')
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/etc/apache(2)?(/.*)? gen_context(system_u:object_r:httpd_config_t,s0)
|
|
|
|
/etc/apache-ssl(2)?(/.*)? gen_context(system_u:object_r:httpd_config_t,s0)
|
2006-02-06 22:47:46 +00:00
|
|
|
/etc/htdig(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/etc/httpd -d gen_context(system_u:object_r:httpd_config_t,s0)
|
|
|
|
/etc/httpd/conf.* gen_context(system_u:object_r:httpd_config_t,s0)
|
|
|
|
/etc/httpd/logs gen_context(system_u:object_r:httpd_log_t,s0)
|
|
|
|
/etc/httpd/modules gen_context(system_u:object_r:httpd_modules_t,s0)
|
|
|
|
/etc/vhosts -- gen_context(system_u:object_r:httpd_config_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/srv/([^/]*/)?www(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/bin/htsslpass -- gen_context(system_u:object_r:httpd_helper_exec_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/lib/apache-ssl/.+ -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
|
|
|
/usr/lib/cgi-bin(/.*)? gen_context(system_u:object_r:httpd_sys_script_exec_t,s0)
|
2005-11-10 20:36:59 +00:00
|
|
|
/usr/lib/squid/cachemgr.cgi -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/lib(64)?/apache(/.*)? gen_context(system_u:object_r:httpd_modules_t,s0)
|
|
|
|
/usr/lib(64)?/apache2/modules(/.*)? gen_context(system_u:object_r:httpd_modules_t,s0)
|
2005-10-17 17:55:38 +00:00
|
|
|
/usr/lib(64)?/apache(2)?/suexec(2)? -- gen_context(system_u:object_r:httpd_suexec_exec_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/lib(64)?/cgi-bin/(nph-)?cgiwrap(d)? -- gen_context(system_u:object_r:httpd_suexec_exec_t,s0)
|
|
|
|
/usr/lib(64)?/httpd(/.*)? gen_context(system_u:object_r:httpd_modules_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/sbin/apache(2)? -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
2006-02-06 22:47:46 +00:00
|
|
|
/usr/sbin/apache-ssl(2)? -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/sbin/httpd(\.worker)? -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
ifdef(`distro_suse', `
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/sbin/httpd2-.* -- gen_context(system_u:object_r:httpd_exec_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
')
|
2006-02-06 22:47:46 +00:00
|
|
|
/usr/sbin/suexec -- gen_context(system_u:object_r:httpd_suexec_exec_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/usr/share/htdig(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/cache/httpd(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
2006-02-06 22:47:46 +00:00
|
|
|
/var/cache/mason(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
|
|
|
/var/cache/mod_ssl(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/cache/php-eaccelerator(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
|
|
|
/var/cache/php-mmcache(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
2006-02-06 22:47:46 +00:00
|
|
|
/var/cache/rt3(/.*)? gen_context(system_u:object_r:httpd_cache_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/cache/ssl.*\.sem -- gen_context(system_u:object_r:httpd_cache_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2006-02-13 22:05:08 +00:00
|
|
|
/var/lib/cacti(/.*)? gen_context(system_u:object_r:httpd_var_lib_t,s0)
|
2005-11-10 20:36:59 +00:00
|
|
|
/var/lib/dav(/.*)? gen_context(system_u:object_r:httpd_var_lib_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/lib/htdig(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
|
|
|
/var/lib/httpd(/.*)? gen_context(system_u:object_r:httpd_var_lib_t,s0)
|
|
|
|
/var/lib/php/session(/.*)? gen_context(system_u:object_r:httpd_var_run_t,s0)
|
|
|
|
/var/lib/squirrelmail/prefs(/.*)? gen_context(system_u:object_r:httpd_squirrelmail_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/log/apache(2)?(/.*)? gen_context(system_u:object_r:httpd_log_t,s0)
|
|
|
|
/var/log/apache-ssl(2)?(/.*)? gen_context(system_u:object_r:httpd_log_t,s0)
|
2006-02-13 22:05:08 +00:00
|
|
|
/var/log/cacti(/.*)? gen_context(system_u:object_r:httpd_log_t,s0)
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/log/cgiwrap\.log.* -- gen_context(system_u:object_r:httpd_log_t,s0)
|
|
|
|
/var/log/httpd(/.*)? gen_context(system_u:object_r:httpd_log_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
ifdef(`distro_debian', `
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/log/horde2(/.*)? gen_context(system_u:object_r:httpd_log_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
')
|
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/run/apache.* gen_context(system_u:object_r:httpd_var_run_t,s0)
|
|
|
|
/var/run/gcache_port -s gen_context(system_u:object_r:httpd_var_run_t,s0)
|
2006-02-06 22:47:46 +00:00
|
|
|
/var/run/httpd.* gen_context(system_u:object_r:httpd_var_run_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/spool/gosa(/.*)? gen_context(system_u:object_r:httpd_sys_script_rw_t,s0)
|
|
|
|
/var/spool/squirrelmail(/.*)? gen_context(system_u:object_r:squirrelmail_spool_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
ifdef(`targeted_policy', `', `
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/spool/cron/apache -- gen_context(system_u:object_r:user_cron_spool_t,s0)
|
2005-09-29 20:59:00 +00:00
|
|
|
')
|
|
|
|
|
2005-10-06 19:33:06 +00:00
|
|
|
/var/www(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
|
|
|
/var/www/cgi-bin(/.*)? gen_context(system_u:object_r:httpd_sys_script_exec_t,s0)
|
|
|
|
/var/www/icons(/.*)? gen_context(system_u:object_r:httpd_sys_content_t,s0)
|
|
|
|
/var/www/perl(/.*)? gen_context(system_u:object_r:httpd_sys_script_exec_t,s0)
|