Index: server/common/patches/httpd-suexec-scripts.patch
===================================================================
--- server/common/patches/httpd-suexec-scripts.patch	(revision 399)
+++ server/common/patches/httpd-suexec-scripts.patch	(revision 403)
@@ -48,5 +48,5 @@
  #ifdef HAVE_PWD_H
  #include <pwd.h>
-@@ -95,6 +98,7 @@
+@@ -95,6 +98,9 @@
  {
      /* variable name starts with */
@@ -54,7 +54,9 @@
 +    "HTTPS_",
      "SSL_",
++    "PERL",
++    "PYTHON",
  
      /* variable name is */
-@@ -140,6 +144,7 @@
+@@ -140,6 +146,7 @@
      "UNIQUE_ID=",
      "USER_NAME=",
@@ -64,5 +66,5 @@
  };
  
-@@ -245,6 +250,53 @@
+@@ -245,6 +252,53 @@
      environ = cleanenv;
  }
@@ -118,5 +120,5 @@
  {
      int userdir = 0;        /* ~userdir flag             */
-@@ -450,7 +501,7 @@
+@@ -450,7 +504,7 @@
       * Error out if attempt is made to execute as root or as
       * a UID less than AP_UID_MIN.  Tsk tsk.
@@ -127,23 +129,25 @@
          exit(107);
      }
-@@ -482,6 +533,17 @@
+@@ -482,6 +536,19 @@
          log_err("failed to setuid (%ld: %s)\n", uid, cmd);
          exit(110);
      }
-+    if (uid == 102) {
-+        if (setexeccon("system_u:system_r:signup_t:s0") == -1) {
-+            log_err("failed to setexeccon (%ld: %s) to signup_t\n", uid, cmd);
-+            exit(201);
-+        }
-+    } else {
-+        if (setexeccon("user_u:user_r:user_t:s0") == -1) {
-+            log_err("failed to setexeccon (%ld: %s) to user_t\n", uid, cmd);
-+            exit(202);
-+        }
++    if (is_selinux_enabled()) {
++	if (uid == 102) {
++	    if (setexeccon("system_u:system_r:signup_t:s0") == -1) {
++		log_err("failed to setexeccon (%ld: %s) to signup_t\n", uid, cmd);
++		exit(201);
++	    }
++	} else {
++	    if (setexeccon("user_u:user_r:user_t:s0") == -1) {
++		log_err("failed to setexeccon (%ld: %s) to user_t\n", uid, cmd);
++		exit(202);
++	    }
++	}
 +    }
  
      /*
       * Get the current working directory, as well as the proper
-@@ -513,6 +575,13 @@
+@@ -513,6 +580,13 @@
              exit(113);
          }
@@ -159,5 +163,5 @@
      if ((strncmp(cwd, dwd, strlen(dwd))) != 0) {
          log_err("command not in docroot (%s/%s)\n", cwd, cmd);
-@@ -530,15 +598,17 @@
+@@ -530,15 +604,17 @@
      /*
       * Error out if cwd is writable by others.
@@ -178,5 +182,5 @@
          exit(117);
      }
-@@ -546,10 +616,12 @@
+@@ -546,10 +622,12 @@
      /*
       * Error out if the program is writable by others.
@@ -191,5 +195,5 @@
      /*
       * Error out if the file is setuid or setgid.
-@@ -563,6 +635,7 @@
+@@ -563,6 +641,7 @@
       * Error out if the target name/group is different from
       * the name/group of the cwd or the program.
@@ -199,5 +203,5 @@
          (gid != dir_info.st_gid) ||
          (uid != prg_info.st_uid) ||
-@@ -574,6 +647,7 @@
+@@ -574,6 +653,7 @@
                  prg_info.st_uid, prg_info.st_gid);
          exit(120);
@@ -207,5 +211,5 @@
       * Error out if the program is not executable for the user.
       * Otherwise, she won't find any error in the logs except for
-@@ -609,6 +683,13 @@
+@@ -609,6 +689,13 @@
          log = NULL;
      }