AVC:s on xauth file when doing su
Göran Uddeborg
goeran at uddeborg.se
Sun Jan 3 17:19:05 UTC 2010
Dominick Grift:
> > -rw------- root root system_u:object_r:xauth_home_t:SystemLow .xauthrZ8z8F
> This (above) is the entry i am most interested in. The file apears created by system_u (some system service). Could it be that we are missing an domain transition somewhere?
> This command, i think, returns potential problems:
> sesearch --allow -t xauth_exec_t | grep execute_no_trans
That didn't find anything at all. (And consequently, adding a grep
for sudo at the end didn't show anything either.)
> Do you have stuff running initrc_t? (ps auxZ | grep initrc_t)
There are (now) four such processes:
system_u:system_r:initrc_t:SystemLow nobody 1899 0.0 0.0 105448 876 ? Ss 2009 4:04 /bin/bash /usr/local/sbin/adslmon
system_u:system_r:initrc_t:SystemLow-SystemHigh root 2552 0.0 0.0 52088 1640 ? S 2009 0:05 /usr/libexec/polkit-1/polkitd
unconfined_u:system_r:initrc_t:SystemLow root 25981 0.0 0.0 39280 536 ? Ss 2009 0:14 hostapd -B -ddK /etc/hostapd/hostapd.conf
system_u:system_r:initrc_t:SystemLow nobody 29310 0.0 0.0 104648 656 ? S 18:12 0:00 sleep 10
adslmon is a script I use to monitor when my ADSL connection goes down
and when it comes up again. The sleep is called from that script. I
can't imagine it would be involved, but just in case you want to see
it I put a copy at ftp://ftp.uddeborg.se/pub/adslmon
More information about the fedora-selinux-list
mailing list