cups-lpd
Matthew Saltzman
mjs at ces.clemson.edu
Tue Nov 28 19:05:43 UTC 2006
On Mon, 27 Nov 2006, Daniel J Walsh wrote:
> Matthew Saltzman wrote:
>> Am I supposed to have to disable SELinux protection for cups-lpd in order
>> to use it?
>>
>> After installing and enabling cups-lpd, I can't print using it from a
>> remote system. Disabling SELinux protection in system-config-securitylevel
>> clears the problem.
>>
>> Nov 25 13:57:18 xxxxx kernel: audit(1164481038.379:173): avc: denied {
>> read } for pid=11640 comm="cups-lpd" name="random" dev=tmpfs ino=2172
>> scontext=system_u:system_r:cupsd_lpd_t:s0
>> tcontext=system_u:object_r:random_device_t:s0 tclass=chr_file
>>
>>
> I would recommend that you add local policy to fix this.
>
> audit2allow -M local -i /var/log/audit/audit.log
OK but would you consider it a cups-lpd packaging bug or a policy bug that
this does not work out of the box?
--
Matthew Saltzman
Clemson University Math Sciences
mjs AT clemson DOT edu
http://www.math.clemson.edu/~mjs
More information about the fedora-selinux-list
mailing list