I am running moodle 2.1.1 on a fully updated RHEL 6 box (php 5.3.3/mysql 5.1.52). For a month now I have been seeing selinux alerts in my logs/messages file to the effect:
SELinux is preventing /usr/sbin/httpd from using potentially mislabeled files /boot
I have observed that these alerts occur simultaneously with page hits on any moodle pages (from the httpd access_logs.)
I have only seen one other admin indicate that their moodle install was attempting to access the /boot partition on their server, so this is probably not a common problem (although one has to look in their logs to observer the problem, AND have SELinux set to enforcing).
To be clear the moodle install is operational. We have upgraded this moodle instance since ~release 1.4 and have had SELinux set to enforcing since about release 1.6. The sole issue is the fact that this moodle install is attempting to access files in our /boot partition. And that this is a new alert (the first occurrence was on June 21st 2011). I have even run grep '/boot' on every file in the moodle directory (and moodledata) and found no matches (for '/boot').
Any thoughts?