Centos 5 + RPMForge : SELinux block OpenVPN form using
Arthur Pemberton
pemboa at gmail.com
Sat Dec 6 05:13:13 UTC 2008
Audit message is:
host=moriarty type=AVC msg=audit(1228539599.507:62): avc: denied {
execstack } for pid=4737 comm="openvpn"
scontext=user_u:system_r:openvpn_t:s0 tcontext=user_u:system_r:openvpn
_t:s0 tclass=process
host=moriarty type=SYSCALL msg=audit(1228539599.507:62): arch=40000003
syscall=125 success=no exit=-13 a0=bfd77000 a1=1000 a2=1000007
a3=fffff000 items=0 ppid=4727 pid=4737 auid=50
0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1
ses=6 comm="openvpn" exe="/usr/sbin/openvpn"
subj=user_u:system_r:openvpn_t:s0 key=(null)
setroubleshoot had no suggestion. This only happens when the init
script is used. Direct infovation of openvpn as root does not cause
this.
this google search suggests that this is a fairly popular problem with
no published solution (that I've seen):
http://www.google.com/search?q=liblzo2.so.2%3A+cannot+enable+executable+stack+as+shared+object+requires%3A+Permission+denied%22&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:en-US:official&client=firefox-a
--
Fedora 9 : sulphur is good for the skin
( www.pembo13.com )
More information about the fedora-selinux-list
mailing list