There should be AVC messages logged. You can run those through audit2allow and build a local policy. This should add cvsweb rather than exempt it from being subject to the policy, you shouldn't want that on 'net facing applications unless your 'net is private and populated with only trusted users. Searching LQ or the Fedora site for "audit2allow" should show steps. If unsure, ask away.
|