Mislabeled files
Daniel J Walsh
dwalsh at redhat.com
Thu Jul 3 20:50:15 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Frank Murphy wrote:
> On Tue, 2008-07-01 at 11:29 -0400, John Dennis wrote:
>> Frank Murphy wrote:
>> -
>>> Summary:
>>>
>>> SELinux is preventing the sendmail from using potentially mislabeled
>>> files
>>> (2F746D702F52734B6B436E774F202864656C6574656429).
>>>
>
>>>
>> The mysterious string is hexidecimal encoded, which decodes to:
>>
>> /tmp/RsKkCnwO (deleted)
>>
>> Which means by the time the kernel emitted the event the file
>> /tmp/RsKkCnwO had been unlinked from the file system.
>>
>> Setroubleshoot should have decoded the hexidecimal representation, I'm
>> not sure why it didn't.
>>
>>
>
> [root at frank-01 /]# restorecon -R -v '/tmp'
> restorecon reset /tmp/.X11-unix context
> system_u:object_r:xdm_xserver_tmp_t:s0->system_u:object_r:xdm_tmp_t:s0
>
>
> That looks ok?
>
> Frank
Frank you will have to add a custom policy module to allow this.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkhtO4cACgkQrlYvE4MpobMKLwCguSaPTF/dvuUUMh9jJXlql7HO
v9sAn1KV5u7R7ItpokRTqEJe12lJjwHt
=ArQG
-----END PGP SIGNATURE-----
More information about the fedora-selinux-list
mailing list