targeted/cups.te - unconfined_t send_msg....
Tom London
selinux at gmail.com
Wed May 11 14:40:05 UTC 2005
Running targeted/enforcing, latest rawhide.
I get the following avc during login:
May 11 06:18:09 localhost dbus: avc: denied { send_msg } for
msgtype=method_call interface=com.redhat.CupsDriverConfig
member=MatchDriver dest=com.redhat.CupsDriverConfig spid=3675
tpid=3019 scontext=user_u:system_r:unconfined_t
tcontext=system_u:system_r:cupsd_config_t tclass=dbus
Does this make sense?
--- cups.te 2005-05-02 13:18:00.000000000 -0700
+++ /tmp/cups.te 2005-05-11 07:38:05.000000000 -0700
@@ -258,5 +258,5 @@
can_unix_connect(cupsd_t, initrc_t)
allow cupsd_t initrc_t:dbus send_msg;
allow initrc_t cupsd_t:dbus send_msg;
-allow cupsd_t unconfined_t:dbus send_msg;
+allow { cupsd_t cupsd_config_t } unconfined_t:dbus send_msg;
')
tom
--
Tom London
More information about the fedora-selinux-list
mailing list