I have the /var/spool/cron/root job running two perl scripts. I am running in permissive right now so they run but throw an error in my logwatch and in /var/log/cron of the form
Code: Select all
Mar 3 08:30:01 dunwellguitar3 crond[8463]: (root) NULL security context for user, but SELinux in permissive mode, continuing ()
Mar 3 08:30:01 dunwellguitar3 CROND[8468]: (root) CMD (/usr/local/solar-web_monitor/cgi-bin/fronius_daily_logger.pl)
Code: Select all
43 dunwellguitar3:/usr/local/solar-web_monitor/cgi-bin
> ls -laZ fronius_daily_logger.pl
-rwxr-xr-x. root root unconfined_u:object_r:httpd_sys_script_exec_t:s0 fronius_daily_logger.pl*
44 dunwellguitar3:/usr/local/solar-web_monitor/cgi-bin
> ls -laZ fronius_totals_logger.pl
-rwxr-xr-x. root root unconfined_u:object_r:httpd_sys_script_exec_t:s0 fronius_totals_logger.pl*
Code: Select all
55 dunwellguitar3:/var/spool/cron
> ls -laZ
drwx------. root root system_u:object_r:httpd_sys_script_exec_t:s0 ./
drwxr-xr-x. root root system_u:object_r:var_spool_t:s0 ../
-rw-------. root root unconfined_u:object_r:httpd_sys_script_exec_t:s0 root
Code: Select all
60 dunwellguitar3:/var/spool/cron
> cat root
00,10,20,30,40,50 * * * * /usr/local/solar-web_monitor/cgi-bin/fronius_daily_logger.pl
00,10,20,30,40,50 15-20 * * * /usr/local/solar-web_monitor/cgi-bin/fronius_totals_logger.pl
00 21 * * * /usr/local/solar-web_monitor/cgi-bin/fronius_totals_writer.pl
05 5 * * * /root/backup2usb.sh
If I run the scripts from the command line they throw no SEL errors so I assume it is related to the "cron"-ness.
I'm trying to be a good SEL camper here and work through the messages that come up but this one has got me stumped. I could find nothing that applied in on-line fora or other webness so I'm hoping someone here has some idea of which form of SEL command I should use either for the cron job or for the cgi-bin area where the perl files live. Any suggestions appreciated.
Alan D.