Problem with selinux?

Geofrey Rainey Geofrey.Rainey at tvnz.co.nz
Mon May 11 22:10:22 UTC 2009 

Disabling SELinux will solve your problem. Do you want re-enable it? If you do, it looks like you might have to fix the SELinux security context by probably changing the type to its default. Maybe the directory where 
These files (secrets.tdb) are doesn't have the proper context set?

If you enable SELinux, type in: ls -lZd <directory-path>, and le -lZ <directory-path/*>, and reply with the output.

-----Original Message-----
From: redhat-list-bounces at redhat.com [mailto:redhat-list-bounces at redhat.com] On Behalf Of Esteban Torres Rodriguez
Sent: Monday, 11 May 2009 11:18 p.m.
To: General Red Hat Linux discussion list
Subject: Problem with selinux?

Hello Everybody!!!

I have thats problem with machine on Redhat 4, with
samba-3.0.25b-1.el4_6.5 and winbind.

*May 11 10:24:16 smb04 kernel: audit(1242030246.549:8): avc:  denied  {
write } for  pid=6232 comm="winbindd" name="secrets.tdb" dev=sda2
ino=6311179 scontext=user_u:system_r:winbind_t
tcontext=user_u:object_r:samba_etc_t tclass=file

May 11 10:24:16 smb04 kernel: audit(1242030246.899:9): avc:  denied  {
getattr } for  pid=6251 comm="winbindd" name="winbindd_idmap.tdb"
dev=sda2 ino=15960520 scontext=user_u:system_r:winbind_t
tcontext=system_u:object_r:file_t tclass=file

May 11 10:24:16 smb04 kernel: audit(1242030246.899:10): avc:  denied  {
read write } for  pid=6251 comm="winbindd" name="winbindd_idmap.tdb"
dev=sda2 ino=15960520 scontext=user_u:system_r:winbind_t
tcontext=system_u:object_r:file_t tclass=file

May 11 10:24:16 smb04 kernel: audit(1242030246.899:11): avc:  denied  {
lock } for  pid=6251 comm="winbindd" name="winbindd_idmap.tdb" dev=sda2
ino=15960520 scontext=user_u:system_r:winbind_t
tcontext=system_u:object_r:file_t tclass=file

May 11 10:24:16 smb04 kernel: audit(1242030255.492:12): avc:  denied  {
lock } for  pid=6251 comm="winbindd" name="winbindd_idmap.tdb" dev=sda2
ino=15960520 scontext=user_u:system_r:winbind_t
tcontext=system_u:object_r:file_t tclass=file*

I disabled selinux.Anyone help me?

-- 
##################################################
# Esteban Torres Rodríguez                       #
# Área de Soporte Técnico                        #
# Subdirección de Sistemas Informáticos          # 
# Empresa Pública Desarrollo Agrario y Pesquero  #
# email: etorres at dap.es                          #
##################################################


-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
==========================================================
For more information on the Television New Zealand Group, visit us
online at tvnz.co.nz 
==========================================================
CAUTION:  This e-mail and any attachment(s) contain information that
is intended to be read only by the named recipient(s).  This information
is not to be used or stored by any other person and/or organisation.

More information about the redhat-list mailing list