NetworkManager in today's rawhide....
Tom London
selinux at gmail.com
Sat Jan 28 17:58:34 UTC 2006
NetworkManager is now in /usr/sbin, so it is not getting labeled as
NetworkManager_exec_t.
After doing a 'chcon -t NetworkManager_exec_t /usr/sbin/NetworkManager':
----
type=SOCKETCALL msg=audit(01/28/2006 09:50:36.513:61) : nargs=3 a0=10
a1=b74f40f4 a2=0
type=SOCKADDR msg=audit(01/28/2006 09:50:36.513:61) : saddr=netlink pid:0
type=SYSCALL msg=audit(01/28/2006 09:50:36.513:61) : arch=i386
syscall=socketcall(sendmsg) success=yes exit=32 a0=10 a1=b74f4070
a2=249268 a3=0 items=0 pid=3122 auid=unknown(4294967295) uid=root
gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root
comm=NetworkManager exe=/usr/sbin/NetworkManager
type=AVC msg=audit(01/28/2006 09:50:36.513:61) : avc: denied {
nlmsg_write } for pid=3122 comm=NetworkManager
scontext=system_u:system_r:NetworkManager_t:s0
tcontext=system_u:system_r:NetworkManager_t:s0
tclass=netlink_route_socket
--
Tom London
More information about the fedora-selinux-list
mailing list