/proc/$PID/environ and /proc/$PID/cmdline
Tom London
selinux at gmail.com
Sun Sep 17 01:43:37 UTC 2006
On 9/16/06, Steve Grubb <sgrubb at redhat.com> wrote:
> On Saturday 16 September 2006 17:12, Dawid Gajownik wrote:
> > One more thing: I noticed that SELinux blocks access [1] to some files
> > in /proc directory. Some utilities does not know how to handle this
> > situation.
>
> Do you have AVC messages? We want 'em if you got 'em.
>
> -Steve
>
On 9/16/06, Steve Grubb <sgrubb at redhat.com> wrote:
> On Saturday 16 September 2006 17:12, Dawid Gajownik wrote:
> > One more thing: I noticed that SELinux blocks access [1] to some files
> > in /proc directory. Some utilities does not know how to handle this
> > situation.
>
> Do you have AVC messages? We want 'em if you got 'em.
>
> -Steve
Reasonably 'complete' audit file attached. (ignore the rawip_socket
and setroubleshoot AVCs).
Audit2allow reports:
allow NetworkManager_t cupsd_t:dir search;
allow setrans_t crond_t:dir search;
allow setrans_t cupsd_t:dir search;
allow setrans_t udev_t:dir search;
allow setrans_t xdm_t:dir search;
tom
--
Tom London
-------------- next part --------------
A non-text attachment was scrubbed...
Name: log.tar.gz
Type: application/x-gzip
Size: 3575 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-test-list/attachments/20060916/6e920d8f/attachment.bin>
More information about the fedora-test-list
mailing list