ping redirect
Matthew Saltzman
mjs at ces.clemson.edu
Mon Apr 3 13:48:14 UTC 2006
This was mentioned on fedora-list, but I don't think the OP is interested in
posting here. "ping <host> > foo" as a normal user produces AVC:
Apr 3 09:41:20 vincent52 kernel: audit(1144071680.338:437): avc:
denied
{ write } for pid=21467 comm="ping" name="foo" dev=dm-4 ino=2195784
scontext=user_u:system_r:ping_t:s0
tcontext=user_u:object_r:user_home_t:s0
tclass=file
In a gterm, it just hangs. On a VC, ping exits with an error.
This is FC5 with selinux-policy-targeted-2.2.25-2.fc5.
--
Matthew Saltzman
Clemson University Math Sciences
mjs AT clemson DOT edu
http://www.math.clemson.edu/~mjs
More information about the fedora-selinux-list
mailing list