problems after selinux-policy-targeted-1.17.30-3.2 update

Michael E Locasto mel2008 at
Wed Jun 15 14:25:38 UTC 2005

I have also experienced the error in the new version of the policy boolean
file. However, Colin's advice about setting the execmod boolean to 1
doesn't work for me.

[root at xoren ~]# /usr/sbin/setsebool -P allow_execmod=true
[root at xoren ~]# /usr/sbin/getsebool allow_execmod
allow_execmod --> active
[root at xoren targeted]# grep execmod booleans
[root at xoren targeted]#

However, I still cannot start acroread. The Mozilla Flash plugin is also
still inoperable. I see messages in /var/log/messages of the form:

Jun 15 14:12:28 xoren kernel: audit(1118844748.131:0): avc:  denied  { 
execmod } for  pid=6438 comm=acroread 
dev=hda5 ino=29374502 scontext=user_u:system_r:unconfined_t 
tcontext=system_u:object_r:usr_t tclass=file

I appreciate any advice. Should I reboot or reinitialize the SELinux
framework? If so, how? I'm a complete newbie in regards to SELinux.
How do I go about disabling selinux (I'd rather not).

Version info:

[root at xoren ~]# uname -r
[root at xoren ~]# rpm -qa | grep selinux
[root at xoren ~]#

Please CC me, I'm not subscribed to the list.


More information about the fedora-selinux-list mailing list