On Fri, 26 Mar 2004 18:25, "Richard Hally" <rhally@xxxxxxxxxxxxxx> wrote:
> Here are some avc denied messages that showed up from doing a yum update
> while in enforcing mode:
>
> Mar 26 01:28:15 old1 kernel: audit(1080282495.299:0): avc: denied {
> search } for pid=4282 exe=/bin/bash name=1 dev= ino=65538
> scontext=root:sysadm_r:rpm_script_t tcontext=system_u:system_r:init_t
> tclass=dir
Strange that this hasn't been noticed before. Add the following:
can_ps(rpm_script_t, domain)
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
