On Sat, 2005-07-23 at 19:33 +0200, Tomas Larsson wrote: > As mentioned before, I cant get syslogd to run properly. > > It seems that selinux is blocking syslogd. > > type=AVC msg=audit(1122120398.858:801833): avc: denied { read } for > pid=4595 comm="syslogd" name="syslog.conf" dev=dm-0 ino=653814 > scontext=root:system_r:syslogd_t tcontext=system_u:object_r:etc_runtime_t > tclass=file > type=SYSCALL msg=audit(1122120398.858:801833): arch=40000003 syscall=5 > success=no exit=-13 a0=d448c6 a1=0 a2=1b6 a3=9cd1298 items=1 pid=4595 > auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 > comm="syslogd" exe="/sbin/syslogd" > > If I understand this correctly selinux is stopping syslogd to read > syslog.conf. > > How do I do to get it to work, there is no reference in the selinux > man-pages to syslogd. > With best regards The file context that I have for /etc/syslog.conf on FC3 & FC4: [medieval@chaucer etc]$ ls -Z /etc/syslog.conf -rw-r--r-- root root system_u:object_r:etc_t /etc/syslog.conf Have you tried doing a "touch /.autorelabel" and rebooting? Bob -- Bob Kashani http://www.ocf.berkeley.edu/~bobk/garnome -- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-selinux-list