Unfortunately the list has a limit so i can not post the full list of messages, the following is just part of the messages related to the httpd:<br> <br><pre>type=AVC msg=audit(1213067949.988:317): avc: denied { search } for pid=2004 comm="httpd" name="selinux" dev=dm-0 ino=5235563 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:selinux_config_t:s0 tclass=dir<br>
type=SYSCALL msg=audit(1213067949.988:317): arch=40000003 syscall=5 success=no exit=-13 a0=196e92 a1=8000 a2=1b6 a3=0 items=0 ppid=2003 pid=2004 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=system_u:system_r:httpd_t:s0 key=(null)<br>
type=AVC msg=audit(1213067949.991:318): avc: denied { search } for pid=2004 comm="httpd" name="/" dev=selinuxfs ino=1 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir<br>
type=SYSCALL msg=audit(1213067949.991:318): arch=40000003 syscall=195 success=no exit=-13 a0=bfc9b81c a1=bfc9b7bc a2=555ff4 a3=bfc9b81c items=0 ppid=2003 pid=2004 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=system_u:system_r:httpd_t:s0 key=(null)<br>
type=AVC msg=audit(1213067949.991:319): avc: denied { search } for pid=2004 comm="httpd" name="/" dev=selinuxfs ino=1 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=dir<br>
type=SYSCALL msg=audit(1213067949.991:319): arch=40000003 syscall=5 success=no exit=-13 a0=bfc9b7f4 a1=8000 a2=0 a3=8000 items=0 ppid=2003 pid=2004 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="httpd" exe="/usr/sbin/httpd" subj=system_u:system_r:httpd_t:s0 key=(null)<br>
type=MAC_CONFIG_CHANGE msg=audit(1213069227.345:1828): bool=httpd_can_network_connect val=1 old_val=0 auid=500 ses=1<br>type=MAC_CONFIG_CHANGE msg=audit(1213069266.437:1833): bool=httpd_can_network_connect_db val=1 old_val=0 auid=500 ses=1<br>
</pre>Cheers.<br>Carlos Chávez.<br><br><div class="gmail_quote">2008/6/4 Eric Paris <<a href="mailto:eparis@redhat.com">eparis@redhat.com</a>>:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="Ih2E3d">On Wed, 2008-06-04 at 00:29 -0600, Carlos Chavez wrote:<br>
> Hi Eric.<br>
> I think so.<br>
><br>
> cat /var/log/messages | grep denied<br>
> cat /var/log/messages | grep avc<br>
><br>
> any command show no output and<br>
><br>
> ausearch -m AVC<br>
><br>
> show this:<br>
> ----<br>
> time->Tue Jun 3 23:39:03 2008<br>
><br>
> type=SYSCALL msg=audit(1212557943.344:16): arch=40000003 syscall=11 success=yes exit=0 a0=9872498 a1=9870c50 a2=9870af0 a3=0 items=0 ppid=2878 pid=2879 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts2 ses=1 comm="NetworkManager" exe="/usr/sbin/NetworkManager" subj=unconfined_u:system_r:NetworkManager_t:s0 key=(null)<br>
><br>
> type=AVC msg=audit(1212557943.344:16): avc: denied { read write } for pid=2879 comm="NetworkManager" path="/var/tmp/kdecache-cchavez/kpc/kde-icon-cache.data" dev=dm-0 ino=8356254 scontext=unconfined_u:system_r:NetworkManager_t:s0 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=file<br>
><br>
> type=AVC msg=audit(1212557943.344:16): avc: denied { read write } for pid=2879 comm="NetworkManager" path="/var/tmp/kdecache-cchavez/kpc/kde-icon-cache.index" dev=dm-0 ino=8356253 scontext=unconfined_u:system_r:NetworkManager_t:s0 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=file<br>
><br>
> that messages was when a restart the NetworkManager as root on a<br>
> shell.<br>
><br>
> Cheers.<br>
> Carlos Chávez.<br>
<br>
</div>Huh... If you system is new enough to support it, can you try<br>
<br>
semodule -DB<br>
and then reboot<br>
after it comes up and fails give us the output of ausearch -m AVC<br>
again...<br>
<font color="#888888"><br>
-Eric<br>
<br>
</font></blockquote></div><br><br clear="all"><br>-- <br>Carlos Chávez