Tuesday, April 8, 2008

Web application can't executing sendmail on Fedora?

"SElinux is a lot tighter in the desktop install, and prevents httpd from exec'ing sendmail."

That is because web based e-mail is very un-secure.
If a badboy gets into your mail, then into the http sever, then into the files, then into the accounts, then into the root, BAM! Your dead.
SELinux has layers of protection and so does the Kernel.
RSVP only with MAC picture id.

"This isn't reported in the ... logs"

That is because SELinux never lets the app do anything. It checks before the app can assess a resource.

Gee it works.

No comments: