prelink and ssh_keysign_exec_t

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Running latest rawhide, targeted/enforcing (selinux-policy-targeted-2.2.38-1):

Prelink produces the following AVC:
type=AVC msg=audit(1147186351.884:41): avc: denied { read } for pid=4803 comm="prelink" name="ssh-keysign" dev=dm-0 ino=9242507 
scontext=system_u:system_r:prelink_t:s0
tcontext=system_u:object_r:ssh_keysign_exec_t:s0 tclass=file
type=SYSCALL msg=audit(1147186351.884:41): arch=40000003 syscall=5
success=no exit=-13 a0=8de2b68 a1=8000 a2=0 a3=0 items=1 pid=4803
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=(none) comm="prelink" exe="/usr/sbin/prelink"
subj=system_u:system_r:prelink_t:s0
type=CWD msg=audit(1147186351.884:41):  cwd="/"
type=PATH msg=audit(1147186351.884:41): item=0
name="/usr/libexec/openssh/ssh-keysign" inode=9242507 dev=fd:00
mode=0104711 ouid=0 ogid=0 rdev=00:00
obj=system_u:object_r:ssh_keysign_exec_t:s0

tom
--
Tom London

--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux