LISTSERV - SCIENTIFIC-LINUX-USERS Archives

On 05/30/2007 02:10 PM, Michael H. Semcheski wrote:
> nota bene: I had to turn off selinux' monitoring httpd to get user 
> directories (ie, www.this.edu/~mike). <http://www.this.edu/~mike).>..

if you can label the user directories to be served (i.e. ext3 or 
NFS-with-ACLs), you might want to just use

  setsebool -P httpd_enable_homedirs 1
  chcon -R -t httpd_sys_content_t ~user/public_html

(straight from  "man httpd_selinux", albeit on SL4. Should also work on 5)

Given that install-and-forget web scripts (CGI/PHP/..) seem to be a 
popular infection vector nowadays..

Regards
jan