I wrote:
[snip lots of stuff]
>>> Mar 31 20:04:18 random kernel: audit(1143831757.360:451): avc: denied { search } for pid=1384 comm="pam_console_app" name="var" dev=hde3 ino=62785 scontext=system_u:system_r:pam_console_t:s0-s0:c0.c255 tcontext=system_u:object_r:file_t:s0 tclass=dir
OK, I booted into single user mode, unmounted /var and ran
chcon -t var_t /var
on the mount point. Now when I boot I don't get 450 messages like the
above.
The underlying problem is that pam_console_apply is trying to access /var
before it's mounted. We just happened to see it because the SELinux
context on the mount point won't allow it.
Ron
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
