Beginner question deciphering SELinux logs
Lance Spitzner
lance at spitzner.net
Tue Jan 1 17:47:40 UTC 2008
I'm very excited to learn more about SELinux as I jump in configuring
this amazing tool. So I hope you folks don't mind a beginner
question or two. Right now I'm attempting to better understand AVC
logs. I've got SAMBA setup to do standard file sharing on CentOS
5.1. Default targeted policy is set in enforcing mode. When set to
permissive, no problem. However, enforcing is giving me the following
error below. I've already set the following booleans to 1, which has
not helped.
samba_enable_home_dirs on
use_samba_home_dirs on
Could a kind soul share with me what the log below is telling me?
Thanks!
lance
PS: Is there anyway to configure SELinux/auditd to use regular dates,
as sylogd does?
type=AVC msg=audit(1199209100.230:984): avc: denied { read } for
pid=26929 comm="smbd" name="home" dev=sdb1 ino=92504065
scontext=user_u:system_r:smbd_t:s0
tcontext=system_u:object_r:home_root_t:s0 tclass=dir
type=SYSCALL msg=audit(1199209100.230:984): arch=40000003 syscall=5
success=no exit=-13 a0=93f9288 a1=18800 a2=bf85dccc a3=93f9268 items=0
ppid=22310 pid=26929 auid=500 uid=500 gid=0 euid=500 suid=0 fsuid=500
egid=500 sgid=0 fsgid=500 tty=(none) comm="smbd" exe="/usr/sbin/smbd"
subj=user_u:system_r:smbd_t:s0 key=(null)
More information about the fedora-selinux-list
mailing list