FC6T1 avc denied messages
Stephen Smalley
sds at tycho.nsa.gov
Mon Jun 26 15:34:51 UTC 2006
On Sun, 2006-06-25 at 13:19 -0500, Jay Cliburn wrote:
> I installed FC6T1 in the last day or two, and I'm seeing lots of
> avc:denied messages when something tries to access the network. The
> common thread seems to be netif. SELinux is enforcing.
>
> I relabeled with:
> setfiles /etc/selinux/targeted/contexts/files/file_contexts /
> but the problem persists.
>
> [root at gadwall etc]# grep "avc: denied" /var/log/messages | more
> Jun 25 04:12:39 gadwall kernel: audit(1151226759.322:28): avc: denied { send } for pid=4327 comm="local" saddr=127.0.0.1 src=32769 daddr=127.0.0.1 dest=512 netif=lo scontext=system_u:system_r:postfix_local_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=packet
<snip>
What policy do you have? rpm -q selinux-policy
Latest policy should include those permissions.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list