Search Mailing List Archives


Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

How to install WebAuth on RHEL 5 with Enforcing SELinux

Barry Allard ballard at stanford.edu
Mon Aug 27 15:56:29 PDT 2007


Hi Folks,

In case you're wondering, here's the trick to install WebAuth 3.5.4 from
source on RHEL/CentOS 5 with SELinux in "Enforcing" mode.

Moved files for security reasons, as per Fedora/RH folks:
/etc/httpd/conf/webauth/keytab -> /etc/webauth/
/etc/httpd/conf/webauth/keyring -> /var/lib/webauth/
/etc/httpd/conf/webauth/service_token_cache -> /var/lib/webauth/
/etc/httpd/conf/webauth/krb5cc_ldap -> /var/lib/webauth/
/etc/httpd/conf/htdocs/tests -> /var/www/html/webauth-tests

Policy changes:
chcon -R -t httpd_sys_script_rw_t /var/lib/webauth/
chcon -R -t httpd_sys_script_ro_t /var/www/html/webauth-tests

Didn't want to spam this up, but I wrote an automated installer script
available upon request.  Just add keytab.  Building an RPM from this might
make sense too.

Barry




More information about the webauth-info mailing list