From: simon@mintsource.org (Simon Peter Nicholls)
Date: Mon, 14 Feb 2011 11:33:35 +0100
Subject: [refpolicy] Fwd: Re: Unexpected user_u permission denied for
 httpd_user_content_t
In-Reply-To: <4D5819D5.8040308@gmail.com>
References: <4D5819D5.8040308@gmail.com>
Message-ID: <4D5904FF.8080509@mintsource.org>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 13/02/11 18:50, Dominick Grift wrote:
> After having another look at refpolicy i have come to the conclusion
> that apache_role() is in fact called for user_t, but that the
> apache_role() has a bug as you rightfully pointed out, where calling
> users are not allowed to manage httpd_user_content_t files, dirs and
> lnk_files.
>
> This seems to me like a bug in policy and so you could propose a patch
> to this list with regard to this.
Your patch works great, thanks.