如何配置SELinux以允许来自CGI脚本的出站连接?


10

我正在迁移到已设置SELinux(运行Centos 5.5)的新Web服务器。我已经对其进行了设置,以便它可以毫无问题地执行CGI脚本,但是一些较旧的基于Perl的脚本无法连接到远程Web服务(RSS提要等)。

运行:grep perl /var/log/audit/audit.log给出:

类型= SYSCALL msg =审核(1299612513.302:7650):arch = 40000003 syscall = 102成功=否退出= -13 a0 = 3 a1 = bfb3eb90 a2 = 57c86c a3 = 10项= 0 ppid = 22342 pid = 22558 auid = 0 uid = 48 gid = 48 euid = 48 suid = 48 fsuid = 48 egid = 48 sgid = 48 fsgid = 48 tty =(none)ses = 235 comm =“ index.cgi” exe =“ / usr / bin / perl” subj = root:system_r:httpd_sys_script_t:s0键=(空)

随着我在SELinux中的速成课程的进行,它似乎正在积极地拒绝出站连接,但是如何配置它以允许CGI脚本发出出站请求?

Answers:


By using our site, you acknowledge that you have read and understand our Cookie Policy and Privacy Policy.
Licensed under cc by-sa 3.0 with attribution required.