On Fri, 18 Jun 2004 00:03, "Jason Hooper" <jhooper@xxxxxxxxxxxxx> wrote:
> Yeah it seems like it should just work...yet it doesn't...wierd. I have
> two machines trying to sync ( well, three, but the third one works and is
> not selinux )
>
> I get this avc on both :
>
> Machine1 :
>
> Jan 3 02:11:03 doh1 kernel: audit(1041581463.810:0): avc: denied { write
> } for pid=1694 exe=/usr/sbin/ntpdate path=/ dev=hda3 ino=3367
> scontext=root:system_r:ntpd_t tcontext=system_u:object_r:root_t
> tclass=chr_file
>
> Machine2 has an ntpd.te file while machine1 does not. Does that matter in
> this case? I can send it if its needed.
To be pedantic, you would not have a domain of "ntpd_t" unless there was
ntpd.te installed. Machine1 may have installed a binary policy, or the
source policy may have been changed, but ntpd.te was certainly used.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
