On 01/12/2013 04:35 AM, Ilyas -- wrote: > [root@xxxxxxxxxx ~]# cat /var/log/audit/audit.log | grep smartd | > audit2allow -M smartd_svirt_image > [root@xxxxxxxxxx ~]# semodule -i smartd_svirt_image.pp > but it not helped to solve problem. > > How I can create permissive rule for selinux in my case? If you need to create your own rules, the first thing you need to do is capture the audit log, and set the system into permissive mode: tail -f /var/log/audit/audit.log In a new terminal: setenforce permissive Now, run the process that's generating AVCs. Run through its standard operations. When that's done, use all of the relevant AVCs that you captured through audit2why to make sure that there's not an existing boolean that can be flipped. Assuming there isn't, run them through audit2allow -M. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: selinux + kvm virtualization + smartd problem
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: selinux + kvm virtualization + smartd problem
- From: Gordon Messmer <yinyang@xxxxxxxxx>
- Date: Sat, 12 Jan 2013 14:55:37 -0800
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CADw2B8JKS-kdi_xtQw9bj4Os9A+YOWx0_2zn-9ztODM_wjrFWg@mail.gmail.com>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/17.0 Thunderbird/17.0
- Follow-Ups:
- Re: selinux + kvm virtualization + smartd problem
- From: Ilyas --
- Re: selinux + kvm virtualization + smartd problem
- References:
- selinux + kvm virtualization + smartd problem
- From: Ilyas --
- selinux + kvm virtualization + smartd problem
- Prev by Date: Re: use of hard links and diff in rsync
- Next by Date: Re: wiping out data on a disk (no physical acess to the machine)
- Previous by thread: selinux + kvm virtualization + smartd problem
- Next by thread: Re: selinux + kvm virtualization + smartd problem
- Index(es):
 |