On 05/06/2014 12:03 AM, Emmanuel Noobadmin wrote:
> On 5/5/14, Daniel J Walsh wrote:
>> Simplest would be to just use
>> # grep usbDataCollector /var/log/audit/audit.log | audit2allow -M myhttp
>> # semodule -i myhttp.pp
>>
>> This would allot httpd_t processes the ability to use usb_device_t.
>>
On 5/5/14, Daniel J Walsh wrote:
> Simplest would be to just use
> # grep usbDataCollector /var/log/audit/audit.log | audit2allow -M myhttp
> # semodule -i myhttp.pp
>
> This would allot httpd_t processes the ability to use usb_device_t.
> If you really wanted to tighten it up, you could build a c
On 05/04/2014 12:22 AM, Emmanuel Noobadmin wrote:
> Using Fedora 20 3.11.10-301.fc20.x86_64 and selinux targeted policy.29
>
> I've a PHP application that sends data to a USB tty device e.g.
> /dev/usbDataCollector
>
> Unfortunately selinux is blocking this action. When set to permissive,
> the al
Using Fedora 20 3.11.10-301.fc20.x86_64 and selinux targeted policy.29
I've a PHP application that sends data to a USB tty device e.g.
/dev/usbDataCollector
Unfortunately selinux is blocking this action. When set to permissive,
the alert browser suggests the command: setsebool -P daemons_use_tty
