Trouble with syslogd and named
Daniel J Walsh
dwalsh at redhat.com
Wed Jan 17 16:43:41 UTC 2007
Steve G wrote:
>> OPTIONS_SYSLOGD="-m 0 -a /var/named/chroot/dev/log"
>>
>
>
> It is possible and even desirable for syslog to be able to create a log device.
> Maybe syslogd needs to be patched to set the context of the log device? I think
> that's the only flexible solution since an admin could give any path as an
> argument to -a.
>
> -Steve
>
>
No if you want to change the file context, you need to use semanage.
The problem here is that syslog is not allowed to search through
/var/named directories. For this you need custom policy.
Use something like audit2allow -M mysyslog -i /var/log/audit/audit.log
to generate the policy.
>
> ____________________________________________________________________________________
> The fish are biting.
> Get more visitors on your site using Yahoo! Search Marketing.
> http://searchmarketing.yahoo.com/arp/sponsoredsearch_v2.php
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
More information about the fedora-selinux-list
mailing list