Two issues

Wed Sep 27 17:32:30 UTC 2006

Hi,
   I am having two issues with FC5 (x86_64) and selinux....

First, it appears the system is having a problem logging AVC's:

===================================================================
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC 
avc:  received policyload notice (seqno=4) : exe="?" (sauid=81, 
hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC 
avc:  2 AV entries and 2/512 buckets used, longest chain length 1 : 
exe="?" (sauid=81, hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC 
avc:  received policyload notice (seqno=4) : exe="/bin/dbus-daemon" 
(sauid=500, hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC 
avc:  0 AV entries and 0/512 buckets used, longest chain length 0 : 
exe="/bin/dbus-daemon" (sauid=500, hostname=?, addr=?, terminal=?)
================================================================

And second,  I was working on a hand edited local.te, as selinux is 
preventing vsftpd from creating files in users home directories...
When running the policy compiler, I get.....

========================================================================
(unknown source)::ERROR 'permission write is not defined for class dir' 
at token ';' on line 22:
allow ftpd_t user_home_dir_t:dir { getattr read search write };
allow ftpd_t user_home_t:dir { getattr read search write };
===============================================================

   And it appears "write" is no longer a valid attribute for directories 
?  What is its replacement ?  The AVC is calling it a "write" problem...
and audit2allow says the correcting line should be:

allow ftpd_t user_home_dir_t:dir write;

Am I missing something ?

TIA!