problems after selinux-policy-targeted-1.17.30-3.2 update
Michael E Locasto
mel2008 at columbia.edu
Wed Jun 15 14:25:38 UTC 2005
I have also experienced the error in the new version of the policy boolean
file. However, Colin's advice about setting the execmod boolean to 1
doesn't work for me.
[root at xoren ~]# /usr/sbin/setsebool -P allow_execmod=true
[root at xoren ~]# /usr/sbin/getsebool allow_execmod
allow_execmod --> active
[root at xoren targeted]# grep execmod booleans
allow_execmod=1
[root at xoren targeted]#
However, I still cannot start acroread. The Mozilla Flash plugin is also
still inoperable. I see messages in /var/log/messages of the form:
Jun 15 14:12:28 xoren kernel: audit(1118844748.131:0): avc: denied {
execmod } for pid=6438 comm=acroread
path=/usr/local/Adobe/Acrobat7.0/Reader/intellinux/plug_ins/AcroForm.api
dev=hda5 ino=29374502 scontext=user_u:system_r:unconfined_t
tcontext=system_u:object_r:usr_t tclass=file
I appreciate any advice. Should I reboot or reinitialize the SELinux
framework? If so, how? I'm a complete newbie in regards to SELinux.
How do I go about disabling selinux (I'd rather not).
Version info:
[root at xoren ~]# uname -r
2.6.11-1.27_FC3
[root at xoren ~]# rpm -qa | grep selinux
libselinux-1.19.1-8
selinux-policy-targeted-1.17.30-3.2
libselinux-devel-1.19.1-8
[root at xoren ~]#
Please CC me, I'm not subscribed to the list.
Cheers,
Michael
More information about the fedora-selinux-list
mailing list