Postfix (FC7)
"Stanisław T. Findeisen"
sf181257 at students.mimuw.edu.pl
Fri Sep 7 07:59:44 UTC 2007
Hello
Hopefully you Fedora/SELinux developers already know that Postfix does
not work correctly by default in Fedora Core 7?
audit(1189079035.093:14): avc: denied { append } for
pid=2573 comm="local" name="stf" dev=sda1 ino=5881977
scontext=system_u:system_r:postfix_local_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=file
This used to happen to me when I tried (as an ordinary user) to send
email to myself. The file that Postfix was trying to append to was my
own mail file (/var/spool/mail/stf).
I had to add this rule:
allow postfix_local_t mail_spool_t:file append;
What's more, it turned out that checkmodule (policy language compiler)
is not present, so I had to install one from Fedora Core 6.
--
"Serce medrcow jest w domu zaloby,
a serce glupcow w domu wesela." (Koh 7:4)
More information about the fedora-selinux-list
mailing list