cups-lpd
Daniel J Walsh
dwalsh at redhat.com
Wed Nov 29 18:33:55 UTC 2006
Matthew Saltzman wrote:
> On Mon, 27 Nov 2006, Daniel J Walsh wrote:
>
>> Matthew Saltzman wrote:
>>> Am I supposed to have to disable SELinux protection for cups-lpd in
>>> order to use it?
>>>
>>> After installing and enabling cups-lpd, I can't print using it from
>>> a remote system. Disabling SELinux protection in
>>> system-config-securitylevel clears the problem.
>>>
>>> Nov 25 13:57:18 xxxxx kernel: audit(1164481038.379:173): avc:
>>> denied { read } for pid=11640 comm="cups-lpd" name="random"
>>> dev=tmpfs ino=2172 scontext=system_u:system_r:cupsd_lpd_t:s0
>>> tcontext=system_u:object_r:random_device_t:s0 tclass=chr_file
>>>
>>>
>> I would recommend that you add local policy to fix this.
>>
>> audit2allow -M local -i /var/log/audit/audit.log
>
> OK but would you consider it a cups-lpd packaging bug or a policy bug
> that this does not work out of the box?
>
No this is a bug in policy and will be fixed in selinux-policy-2.4.6-1
More information about the fedora-selinux-list
mailing list