portmap

Jared W. Robinson jwr at xmission.com
Wed Feb 2 18:11:22 UTC 2005


I'm having the same problem -- and it happened after I upgraded my
system. So, I put my machine into permissive mode, and today, I've been
restarting portmap and watching /var/log/messages to see what happens.
Here's what I've done so far:

restorecon -v /lib/libnsl.so.1
restorecon -v /lib/libnsl-2.3.4.so
restorecon -v /lib/tls/libc-2.3.4.so
restorecon -v /var/run/nscd/socket

But, I still get this denied message:
Feb  2 11:07:28 dev-zelda nscd: 13668 avc:  denied  { shmempwd } for scontext=root:system_r:portmap_t tcontext=user_u:system_r:unconfined_t tclass=nscd 

Anyone have a clue of what to do for that?

- Jared

On Wed, Feb 02, 2005 at 06:58:56PM +0100, Andrzej Kąkolewski wrote:
> Now I have this messages:
> 
> audit(1107366819.358:0): avc:  denied  { read } for  pid=3410
> exe=/sbin/portmap name=libc.so.6 dev=dm-0 ino=8700100
> scontext=user_u:system_r:portmap_t tcontext=system_u:object_r:file_t
> tclass=lnk_file
> 
> audit(1107366819.376:0): avc:  denied  { read } for  pid=3410
> exe=/sbin/portmap name=libc.so.6 dev=dm-0 ino=8700100
> scontext=user_u:system_r:portmap_t tcontext=system_u:object_r:file_t
> tclass=lnk_file
> 
> audit(1107366819.391:0): avc:  denied  { read } for  pid=3410
> exe=/sbin/portmap name=libc.so.6 dev=dm-0 ino=8699916
> scontext=user_u:system_r:portmap_t tcontext=system_u:object_r:file_t
> tclass=lnk_file
> 
> audit(1107366819.601:0): avc:  denied  { read } for  pid=3411
> exe=/sbin/portmap name=passwd dev=dm-0 ino=10374678
> scontext=user_u:system_r:portmap_t tcontext=system_u:object_r:file_t
> tclass=file
> 
> audit(1107366819.615:0): avc:  denied  { write } for  pid=3411
> exe=/sbin/portmap name=log dev=tmpfs ino=7175
> scontext=user_u:system_r:portmap_t tcontext=user_u:object_r:device_t
> tclass=sock_file
> 
> restorecon -v for libc.so.6 do nothing
> 
> 
> On Wed, 02 Feb 2005 11:50:00 -0500
> Colin Walters <walters at redhat.com> wrote:
> 
> > On Wed, 2005-02-02 at 17:49 +0100, Andrzej Kąkolewski wrote:
> > > Hello
> > > I'm getting this avc message in /var/log/messages:
> > > 
> > > audit(1107361904.516:0): avc:  denied  { read } for  pid=3588
> > > exe=/sbin/portmap name=libnsl.so.1 dev=dm-0 ino=8700082
> > > scontext=user_u:system_r:portmap_t tcontext=system_u:object_r:file_t
> > > tclass=lnk_file
> > 
> > Looks like the file context got corrupted; try:
> > 
> > restorecon -v /lib/libnsl.so.1
> > 
> > 
> > --
> > fedora-selinux-list mailing list
> > fedora-selinux-list at redhat.com
> > http://www.redhat.com/mailman/listinfo/fedora-selinux-list
> 
> 
> -- 
> Pozdrawiam
> Andrzej Kąkolewski
> Mail: k_andrzej_85 at o2.pl
> JID: gnr at jabber.atman.pl
> 
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> http://www.redhat.com/mailman/listinfo/fedora-selinux-list

-- 
"Open source means standing on the shoulders of giants."
"The Internet is powered by open source." 
 - Marc Andreessen




More information about the fedora-selinux-list mailing list