nfs avc messages with kernel-2.6.16-1.2069_FC4
Antonio Olivares
olivares14031 at yahoo.com
Sat Apr 1 17:57:40 UTC 2006
RE: nfs avc messages with kernel-2.6.16-1.2069_FC4
Message: 6
Date: Sat, 1 Apr 2006 00:51:47 -0800 (PST)
From: Antonio Olivares <olivares14031 at yahoo.com>
Subject: nfs avc messages with
kernel-2.6.16-1.2069_FC4
To: fedora-selinux-list at redhat.com
Message-ID:
<20060401085147.91904.qmail at web52610.mail.yahoo.com>
Content-Type: text/plain; charset="iso-8859-1"
Dear all,
I decided to install latest FC4 kernel
2.6.16-1.2069_FC4 or so. Upon booting I can no longer
surf the internet. I get some avc denied messages
from dmesg. How can I fix this issue?
I do not want to disable selinux.
TIA,
Antonio
======================================================
Here are the avc's. Since they were not present in
the previous email to fedora-selinux-list at redhat.com
I do not want to disable selinux to be able to surf
the internet. How can I take care of this?
I appreciate all comments/help I can get.
SELinux: initialized (dev binfmt_misc, type
binfmt_misc), uses genfs_contexts
ip_tables: (C) 2000-2006 Netfilter Core Team
Netfilter messages via NETLINK v0.30.
ip_conntrack version 2.4 (3071 buckets, 24568 max) -
232 bytes per conntrack
audit(1143912938.407:2): avc: denied { sendto } for
pid=1620 comm="rpc.statd"
scontext=system_u:system_r:rpcd_t
tcontext=system_u:object_r:unlabeled_t
tclass=association
audit(1143912938.447:3): avc: denied { sendto } for
pid=1620 comm="rpc.statd"
scontext=system_u:system_r:rpcd_t
tcontext=system_u:object_r:unlabeled_t
tclass=association
audit(1143912938.463:4): avc: denied { sendto } for
pid=1620 comm="rpc.statd"
scontext=system_u:system_r:rpcd_t
tcontext=system_u:object_r:unlabeled_t
tclass=association
Also on another machine
I installed kernel-2.6.16.1 to an FC3 machine with
selinux disabled and I tried to reenable it since this
kernel comes with selinux in its options and i
compiled it in. Yet when I rebooted it gave me a
kernel panic that no policy was in place. How should
I define such a policy? Is there a tarball somewhere
that I can get, or suggestions since FC3 is in legacy
already?
Regards,
Antonio
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the fedora-selinux-list
mailing list