I get these avcs when running kopete:
avc: denied { write } for pid=4371 exe=/usr/bin/kdeinit name=cleaned
dev=hda5 ino=1567855 scontext=jwboyer:user_r:user_t
tcontext=system_u:object_r:file_t tclass=file
avc: denied { write } for pid=4371 exe=/usr/bin/kdeinit name=l dev=hda5
ino=1567856 scontext=jwboyer:user_r:user_t tcontext=system_u:object_r:file_t
tclass=dir
avc: denied { add_name } for pid=4371 exe=/usr/bin/kdeinit
name=loginnet.passport.com_login.srf_42a239b5.new
scontext=jwboyer:user_r:user_t tcontext=system_u:object_r:file_t tclass=dir
avc: denied { create } for pid=4371 exe=/usr/bin/kdeinit
name=loginnet.passport.com_login.srf_42a239b5.new
scontext=jwboyer:user_r:user_t tcontext=jwboyer:object_r:file_t tclass=file
avc: denied { write } for pid=4371 exe=/usr/bin/kdeinit
path=/var/tmp/kdecache-jwboyer/http/l/loginnet.passport.com_login.srf_42a239b5.new
dev=hda5 ino=1571952 scontext=jwboyer:user_r:user_t
tcontext=jwboyer:object_r:file_t tclass=file
to solve issues like this, should i define a new policy for kdeinit, put
kdeinit into a different domain, define some dontaudit rules, etc?
there are lots of avcs to deal with, and i am just trying to determine what an
appropriate fix for some of them are.
thx,
josh
