procmail-related selinux messages
Jens Petersen
petersen at redhat.com
Mon Apr 12 04:30:03 UTC 2004
>>>>> "TM" == Thomas Molina <tmolina at cablespeed.com> writes:
TM> I made a fresh install of Fedora Core 2 test 2, and
TM> fully updated everything. All the files have been
TM> relabled and most/all of my normal programs are set
TM> up for the new environment.
TM> On this system I run fetchmail as a daemon. Mail is
TM> delivered using sendmail with procmail recipes. I
TM> would like to adjust policy to deal with the
TM> following messages whenever mail is retrieved.
Are you running permissive mode btw? With pre-test3 devel
in enforcing mode I see avc messages from procmail being
called by sendmail too:
audit(1081739775.225:0): avc: denied { read } for
pid=2155 exe=/usr/sbin/sendmail.sendmail name=self dev= ino=2 scontext=user_u:sysadm_r:sysadm_mail_t tcontext=system_u:object_r:proc_t tclass=lnk_file
audit(1081739775.313:0): avc: denied { getattr } for pid=2158 exe=/usr/bin/procmail path=/home/petersen/.procmailrc dev=hda2 ino=4578576 scontext=system_u:system_r:procmail_t tcontext=user_u:object_r:home_root_t tclass=file
audit(1081739775.313:0): avc: denied { read } for pid=2158 exe=/usr/bin/procmail name=.procmailrc dev=hda2 ino=4578576 scontext=system_u:system_r:procmail_t tcontext=user_u:object_r:home_root_t tclass=file
Anyway could you please report the problem in bugzilla and I
will try to look into it more.
Thanks, Jens
More information about the fedora-test-list
mailing list