more prelink AVCs
Tom London
selinux at gmail.com
Tue Feb 20 16:10:36 UTC 2007
Running latest rawhide, targeted/enforcing.
Getting AVCs for prelink for sudo_exec_t
type=AVC msg=audit(1171985725.828:47): avc: denied { read } for
pid=32139 comm="prelink" name="sudoedit" dev=dm-0 ino=5474778
scontext=system_u:system_r:prelink_t:s0-s0:c0.c1023
tcontext=system_u:object_r:sudo_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1171985725.828:47): arch=40000003 syscall=5
success=no exit=-13 a0=a02bcf8 a1=8000 a2=0 a3=0 items=0 ppid=32130
pid=32139 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=(none) comm="prelink" exe="/usr/sbin/prelink"
subj=system_u:system_r:prelink_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1171985739.772:48): avc: denied { read } for
pid=32139 comm="prelink" name="sudo" dev=dm-0 ino=5474778
scontext=system_u:system_r:prelink_t:s0-s0:c0.c1023
tcontext=system_u:object_r:sudo_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1171985739.772:48): arch=40000003 syscall=5
success=no exit=-13 a0=a02bcf8 a1=8000 a2=0 a3=0 items=0 ppid=32130
pid=32139 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=(none) comm="prelink" exe="/usr/sbin/prelink"
subj=system_u:system_r:prelink_t:s0-s0:c0.c1023 key=(null)
tom
--
Tom London
More information about the fedora-selinux-list
mailing list