Nicolas Mailhot wrote:
Hi,
Looking at audit logs I see several :
type=AVC msg=audit(1130513065.226:40): avc: denied { execute } for
pid=2935 comm="procmail" name="spamc" dev=dm-0 ino=3349141
scontext=system_u:system_r:postfix_local_t:s0
tcontext=system_u:object_r:spamc_exec_t:s0 tclass=file
Shouldn't procmail be allowed to talk to spamassassin ? it's a common
enough usage pattern.
(system is up-to-date rawhide, selinux-policy-targeted-1.27.2-8)
Regards,
If you add
can_exec(postfix_local_t, spamc_exec_t)
does that fix the problem?
And if you don't know how to do this,
try
chcon -t bin_t /usr/bin/spamassassin
And tell me if that fixes the problem
------------------------------------------------------------------------
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
--
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
