FC2 Start up Errors (SElinux, user w/ root priv)

Tue Jun 22 11:28:33 UTC 2004

edwarner99 at yahoo.com wrote:

>I am getting these errors when I reboot FC2.
>I don't know what they mean.
>
>I can log in as a user, but I have root privileges.
>
>  
>

The messages are related to SELinux. If you want to know what the 
messages mean, checking out the site for selinux or the list that Red 
Hat sponsors is your best choice.

This problem with getting roo priveleges as a normal user sounds 
different than I ever heard before. Most of the problems were with not 
having enough permissions for user.

Jim

>audit(1087859536.934:0): avc:  denied  { getattr } for
> pid=1 exe=/sbin/init path=/dev/initctl dev=hda2
>ino=73143 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:file_t tclass=fifo_file
>audit(1087859536.934:0): avc:  denied  { read write }
>for  pid=1 exe=/sbin/init name=initctl dev=hda2
>ino=73143 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:file_t tclass=fifo_file
>audit(1087859538.846:0): avc:  denied  { getattr } for
> pid=278 exe=/sbin/initlog path=/dev/log dev=hda2
>ino=65553 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:file_t tclass=sock_file
>audit(1087859538.846:0): avc:  denied  { write } for 
>pid=278 exe=/sbin/initlog name=log dev=hda2 ino=65553
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:file_t tclass=sock_file
>audit(1087859538.925:0): avc:  denied  {
>syslog_console } for  pid=446 exe=/bin/dmesg
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:system_r:kernel_t tclass=system
>audit(1087859539.090:0): avc:  denied  { search } for 
>pid=450 exe=/sbin/sysctl name=net dev= ino=-268435354
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_t tclass=dir
>audit(1087859539.090:0): avc:  denied  { write } for 
>pid=450 exe=/sbin/sysctl name=ip_forward dev=
>ino=-268435331 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_t tclass=file
>audit(1087859539.090:0): avc:  denied  { getattr } for
> pid=450 exe=/sbin/sysctl
>path=/proc/sys/net/ipv4/ip_forward dev= ino=-268435331
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_t tclass=file
>audit(1087859539.092:0): avc:  denied  { search } for 
>pid=450 exe=/sbin/sysctl name=unix dev= ino=-268435042
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_unix_t
>tclass=dir
>audit(1087859539.093:0): avc:  denied  { write } for 
>pid=450 exe=/sbin/sysctl name=max_dgram_qlen dev=
>ino=-268435041 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_unix_t
>tclass=file
>audit(1087859539.093:0): avc:  denied  { getattr } for
> pid=450 exe=/sbin/sysctl
>path=/proc/sys/net/unix/max_dgram_qlen dev=
>ino=-268435041 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_net_unix_t
>tclass=file
>audit(1087859539.093:0): avc:  denied  { search } for 
>pid=450 exe=/sbin/sysctl name=vm dev= ino=-268435370
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_vm_t tclass=dir
>audit(1087859539.093:0): avc:  denied  { write } for 
>pid=450 exe=/sbin/sysctl name=overcommit_memory dev=
>ino=-268435369 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_vm_t tclass=file
>audit(1087859539.093:0): avc:  denied  { getattr } for
> pid=450 exe=/sbin/sysctl
>path=/proc/sys/vm/overcommit_memory dev=
>ino=-268435369 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_vm_t tclass=file
>audit(1087859539.093:0): avc:  denied  { search } for 
>pid=450 exe=/sbin/sysctl name=dev dev= ino=-268435240
>scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_dev_t tclass=dir
>audit(1087859539.094:0): avc:  denied  { write } for 
>pid=450 exe=/sbin/sysctl name=speed_limit_min dev=
>ino=-268435120 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_dev_t tclass=file
>audit(1087859539.094:0): avc:  denied  { getattr } for
> pid=450 exe=/sbin/sysctl
>path=/proc/sys/dev/raid/speed_limit_min dev=
>ino=-268435120 scontext=system_u:system_r:kernel_t
>tcontext=system_u:object_r:sysctl_dev_t tclass=file
>
>
>
>		
>__________________________________
>Do you Yahoo!?
>Yahoo! Mail Address AutoComplete - You start. We finish.
>http://promotions.yahoo.com/new_mail 
>
>
>  
>

-- 
Your true value depends entirely on what you are compared with.