From: Dan Walsh <dwalsh@redhat.com>
Date: Tue, 19 Jul 2011 14:53:49 +0000 (-0400)
Subject: logs directory under /var/www/html should be labeled content not as a httpd_log_t
X-Git-Tag: 000~683
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7d8f88a20e3bb9a4f39ea4e7ec6fcf84661f2166;p=people%2Fstevee%2Fselinux-policy.git

logs directory under /var/www/html should be labeled content not as a httpd_log_t
---

diff --git a/policy/modules/services/apache.fc b/policy/modules/services/apache.fc
index 70d68cb5..0145f7c3 100644
--- a/policy/modules/services/apache.fc
+++ b/policy/modules/services/apache.fc
@@ -115,6 +115,7 @@ ifdef(`distro_debian', `
 
 /var/www(/.*)?				gen_context(system_u:object_r:httpd_sys_content_t,s0)
 /var/www(/.*)?/logs(/.*)?		gen_context(system_u:object_r:httpd_log_t,s0)
+/var/www/html(/.*)?/logs(/.*)?		gen_context(system_u:object_r:httpd_sys_content_t,s0)
 /var/www/[^/]*/cgi-bin(/.*)?		gen_context(system_u:object_r:httpd_sys_script_exec_t,s0)
 /var/www/cgi-bin(/.*)?			gen_context(system_u:object_r:httpd_sys_script_exec_t,s0)
 /var/www/icons(/.*)?			gen_context(system_u:object_r:httpd_sys_content_t,s0)