WEB开发网
开发学院操作系统Linux/Unix SELinux拒绝vsftpd上传文件到用户主目录 阅读

SELinux拒绝vsftpd上传文件到用户主目录

 2008-05-07 12:04:04 来源:WEB开发网   
核心提示: 系统是CentOS 5.1,创建用户后,SELinux拒绝vsftpd上传文件到用户主目录,不能登陆FTP,在/var/log/messages文件记录以下信息: Mar 31 13:46:15 localhost kernel: audit(1206942375.697:5719): avc: denied { a
 

系统是CentOS 5.1,创建用户后,不能登陆FTP,在/var/log/messages文件记录以下信息:

Mar 31 13:46:15 localhost kernel: audit(1206942375.697:5719): avc: denied { append } for pid=32111 comm="vsftpd" name="test" dev=sda3 ino=19400200 scontext=root:system_r:ftpd_t:s0 tcontext=root:object_r:root_t:s0 tclass=file

SElinux ftp daemon policy is customizable based on least access required. So by default SElinux does not allow users to login and read their home directories.

If you are setting up this machine as a ftpd server and wish to allow users to access their home directorories, you need to set the ftp_home_dir boolean.

执行命令:

setsebool -P ftp_home_dir 1

上传文件成功。

Tags:SELinux 拒绝 vsftpd

编辑录入:爽爽 [复制链接] [打 印]
赞助商链接