[Bug 478627] New: SELinux is preventing clamd.amavisd (clamd_t) "search" amavis_var_run_t.

bugzilla@xxxxxxxxxx · Fri, 2 Jan 2009 07:08:03 -0500

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.

Summary: SELinux is preventing clamd.amavisd (clamd_t) "search" amavis_var_run_t.

https://bugzilla.redhat.com/show_bug.cgi?id=478627

           Summary: SELinux is preventing clamd.amavisd (clamd_t) "search"
                    amavis_var_run_t.
           Product: Fedora
           Version: 10
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: medium
          Priority: low
         Component: amavisd-new
        AssignedTo: steve@xxxxxxxxx
        ReportedBy: amessina@xxxxxxxxxxxx
         QAContact: extras-qa@xxxxxxxxxxxxxxxxx
                CC: steve@xxxxxxxxx, fedora-perl-devel-list@xxxxxxxxxx
    Classification: Fedora

Running in permissive mode... Using
selinux-policy-targeted-3.5.13-37.fc10.noarch

Source Context                system_u:system_r:clamd_t:s0
Target Context                system_u:object_r:amavis_var_run_t:s0
Target Objects                ./amavisd [ dir ]
Source                        clamd.amavisd
Source Path                   /usr/sbin/clamd
Port                          <Unknown>
Host                          xxx.com
Source RPM Packages           clamav-server-0.94.2-1.fc10
Target RPM Packages           
Policy RPM                    selinux-policy-3.5.13-37.fc10
Selinux Enabled               True
Policy Type                   targeted
MLS Enabled                   True
Enforcing Mode                Permissive
Plugin Name                   catchall
Host Name                     xxx.com
Platform                      Linux xxx.com
                              2.6.27.7-134.fc10.x86_64 #1 SMP Mon Dec 1
22:21:35
                              EST 2008 x86_64 x86_64
Alert Count                   1
First Seen                    Fri 02 Jan 2009 05:29:18 AM CST
Last Seen                     Fri 02 Jan 2009 05:29:18 AM CST
Local ID                      f55efdd7-b671-45e8-849d-7fdb4485108a
Line Numbers                  

Raw Audit Messages            

node=xxx.com type=AVC msg=audit(1230895758.941:31): avc:  denied  { search }
for  pid=3088 comm="clamd.amavisd" name="amavisd" dev=sdd3 ino=3554069
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:amavis_var_run_t:s0 tclass=dir

node=xxx.com type=AVC msg=audit(1230895758.941:31): avc:  denied  { write } for
 pid=3088 comm="clamd.amavisd" name="amavisd" dev=sdd3 ino=3554069
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:amavis_var_run_t:s0 tclass=dir

node=xxx.com type=AVC msg=audit(1230895758.941:31): avc:  denied  { add_name }
for  pid=3088 comm="clamd.amavisd" name="clamd.pid"
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:amavis_var_run_t:s0 tclass=dir

node=xxx.com type=AVC msg=audit(1230895758.941:31): avc:  denied  { write } for
 pid=3088 comm="clamd.amavisd" name="clamd.pid" dev=sdd3 ino=3554068
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:amavis_var_run_t:s0 tclass=file

node=xxx.com type=SYSCALL msg=audit(1230895758.941:31): arch=c000003e syscall=2
success=yes exit=5 a0=f5e3c0 a1=241 a2=1b6 a3=7ff5aa04f6f0 items=0 ppid=3079
pid=3088 auid=4294967295 uid=496 gid=495 euid=496 suid=496 fsuid=496 egid=495
sgid=495 fsgid=495 tty=(none) ses=4294967295 comm="clamd.amavisd"
exe="/usr/sbin/clamd" subj=system_u:system_r:clamd_t:s0 key=(null)

-- 
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

--
Fedora Extras Perl SIG
http://www.fedoraproject.org/wiki/Extras/SIGs/Perl
Fedora-perl-devel-list mailing list
Fedora-perl-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-perl-devel-list