Cyrus-imapd & selinux

Roger Grosswiler roger at gwch.net
Thu Apr 15 13:15:53 UTC 2004 

Hello,

i am not master of desaster of selinux, and i think its just a question of the policy.

So, if you installed your cyrus-imapd, and did your config for config (via saslauthd/pam) it is impossible to login
neither in cyrus itself or in cyradm. you get always the error-message, that you cannot login. It works fine, if
selinux is disabled.

Here my message-log for all interested.

Of course i would like to learn more about linux, so i ask what this means and how i could change this in my policies
- and e.g. - if this shall be changed also in de default policy.

Thx
Roger

Apr 14 21:08:52 lneo kernel: audit(1081969732.601:0): avc:  denied  { getattr } for  pid=3155
exe=/usr/lib/cyrus-imapd/cyrus-master
path=/var/run/winbindd/pipe dev=hda3 ino=530650
scontext=root:system_r:cyrus_t tcontext=system_u:object_r:var_run_t tclass=sock_file
Apr 14 21:08:52 lneo kernel: audit(1081969732.906:0): avc:  denied  { getattr } for  pid=3152
exe=/usr/lib/cyrus-imapd/cyrus-master
path=/var/run/winbindd/pipe dev=hda3 ino=530650
scontext=root:system_r:cyrus_t tcontext=system_u:object_r:var_run_t tclass=sock_file
Apr 14 21:09:09 lneo kernel: audit(1081969749.496:0): avc:  denied  { write } for  pid=3162
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file
Apr 14 21:09:42 lneo kernel: audit(1081969782.548:0): avc:  denied  { write } for  pid=3173
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file
Apr 14 21:10:01 lneo kernel: audit(1081969801.034:0): avc:  denied  { write } for  pid=3174
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file
Apr 14 21:10:34 lneo kernel: audit(1081969834.466:0): avc:  denied  { write } for  pid=3175
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file
Apr 14 21:13:55 lneo kernel: audit(1081970035.975:0): avc:  denied  { write } for  pid=3176
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file
Apr 14 21:14:30 lneo kernel: audit(1081970070.964:0): avc:  denied  { write } for  pid=3180
exe=/usr/lib/cyrus-imapd/imapd name=mux dev=hda3 ino=182930 scontext=root:system_r:cyrus_t
tcontext=root:object_r:var_run_t tclass=sock_file

More information about the fedora-test-list mailing list