SELinux blocking Samba share mounting?
Steven Stromer
filter at stevenstromer.com
Thu Feb 12 21:41:48 UTC 2009
To add to my last post...
Just learned that AVC denials will be sent to /var/log/audit/audit.log rather than /var/log/messages. Here's what I'm getting:
type=AVC msg=audit(1234474415.612:15330): avc: denied { search } for pid=14702 comm="smbd" name="/" dev=dm-2 ino=2 scontext=root:system_r:smbd_t:s0 tcontext=system_u:object_r:home_root_t:s0 tclass=dir
type=SYSCALL msg=audit(1234474415.612:15330): arch=c000003e syscall=4 success=no exit=-13 a0=2b9f623cbeb0 a1=7fff581e3850 a2=7fff581e3850 a3=3 items=0 ppid=11661 pid=14702 auid=0 uid=500 gid=0 euid=500 suid=0 fsuid=500 egid=500 sgid=0 fsgid=500 tty=(none) ses=105 comm="smbd" exe="/usr/sbin/smbd" subj=root:system_r:smbd_t:s0 key=(null)
type=AVC msg=audit(1234474415.621:15331): avc: denied { search } for pid=14704 comm="smbd" name="/" dev=dm-2 ino=2 scontext=root:system_r:smbd_t:s0 tcontext=system_u:object_r:home_root_t:s0 tclass=dir
type=SYSCALL msg=audit(1234474415.621:15331): arch=c000003e syscall=4 success=no exit=-13 a0=2b9f623cbeb0 a1=7fff581e3850 a2=7fff581e3850 a3=3 items=0 ppid=11661 pid=14704 auid=0 uid=500 gid=0 euid=500 suid=0 fsuid=500 egid=500 sgid=0 fsgid=500 tty=(none) ses=105 comm="smbd" exe="/usr/sbin/smbd" subj=root:system_r:smbd_t:s0 key=(null)
More information about the fedora-selinux-list
mailing list