Selinux an vsftp

Daniel J Walsh dwalsh at redhat.com
Wed Sep 21 12:33:57 UTC 2005


Tomas Larsson wrote:

>I am getting 500 OOPS: failed to open xferlog log file:/var/log/vsftpd.log,
>so I'm gessing that its something wrong in the selinux-setup
>
>Ls -Z looks lime this
>-rw-r--r--  root     root     system_u:object_r:var_log_t      vsftpd.log
>
>And in audit log
>
>type=AVC msg=audit(1127260722.483:14084097): avc:  denied  { append } for
>pid=622 comm="vsftpd" name="vsftpd.log" dev=dm-0 ino=1143798
>scontext=system_u:system_r:ftpd_t tcontext=system_u:object_r:var_log_t
>tclass=file
>
>I'm guessing that I've got something wrong, but cant find what to do
>
>With best regards
>
>Tomas Larsson
>Sweden
>
>Verus Amicus Est Tamquam Alter Idem
>
>
>--
>fedora-selinux-list mailing list
>fedora-selinux-list at redhat.com
>https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>  
>
Looks like a bug in file context.

chcon -t xferlog_t /var/log/vsftpd.log
should fix it.

I will update policy

-- 





More information about the fedora-selinux-list mailing list