privoxy and targeted
Tom London
selinux at gmail.com
Mon Feb 14 18:05:32 UTC 2005
Running targeted/enforcing, latest Rawhide.
Get the following from privoxy:
Feb 14 09:59:19 localhost kernel: audit(1108403959.792:0): avc:
denied { connect } for pid=5734 exe=/usr/sbin/privoxy
scontext=user_u:system_r:privoxy_t tcontext=user_u:system_r:privoxy_t
tclass=tcp_socket
Feb 14 09:59:19 localhost kernel: audit(1108403959.838:0): avc:
denied { connect } for pid=5733 exe=/usr/sbin/privoxy
scontext=user_u:system_r:privoxy_t tcontext=user_u:system_r:privoxy_t
tclass=tcp_socket
adding
allow privoxy_t self:tcp_socket connect;
to privoxy.te fixes....but I'm sure there is a better way to do this,
e.g., change
can_network_server(privoxy_t)
to
can_network(privoxy_t)
tom
--
Tom London
More information about the fedora-selinux-list
mailing list