another selinux question
Tim Fenn
fenn at stanford.edu
Tue Feb 1 22:38:54 UTC 2005
I'm running both named and dhcpd, and dhcpd is set to do dynamic dns
updates (both use /etc/rndc.key as the authentication key). All used
to be good, but now dhcpd won't start, and errors in the kernel log
show:
audit(1107297176.619:0): avc: denied { search } for pid=8099
exe=/usr/sbin/dhcpd name=named dev=sda1 ino=1295119
scontext=root:system_r:dhcpd_t tcontext=system_u:object_r:named_zone_t
tclass=dir
which I'm quite sure is related to the ownership rights on
/etc/rndc.key (which just points to /var/named/chroot/etc/rndc.key):
/etc/rndc.* -- system_u:object_r:named_conf_t
and as far as I understand it, there isn't a way to specify multiple
contexts. Does anyone know how to solve this?
Regards,
Tim
--
Morals? I eat communism and $h!t America, brother. --Seanbaby
More information about the fedora-list
mailing list