Hi,
I am having two issues with FC5 (x86_64) and selinux....
First, it appears the system is having a problem logging AVC's:
===================================================================
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC
avc: received policyload notice (seqno=4) : exe="?" (sauid=81,
hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC
avc: 2 AV entries and 2/512 buckets used, longest chain length 1 :
exe="?" (sauid=81, hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC
avc: received policyload notice (seqno=4) : exe="/bin/dbus-daemon"
(sauid=500, hostname=?, addr=?, terminal=?)
Sep 27 13:09:16 localhost dbus: Can't send to audit system: USER_AVC
avc: 0 AV entries and 0/512 buckets used, longest chain length 0 :
exe="/bin/dbus-daemon" (sauid=500, hostname=?, addr=?, terminal=?)
================================================================
And second, I was working on a hand edited local.te, as selinux is
preventing vsftpd from creating files in users home directories...
When running the policy compiler, I get.....
========================================================================
(unknown source)::ERROR 'permission write is not defined for class dir'
at token ';' on line 22:
allow ftpd_t user_home_dir_t:dir { getattr read search write };
allow ftpd_t user_home_t:dir { getattr read search write };
===============================================================
And it appears "write" is no longer a valid attribute for directories
? What is its replacement ? The AVC is calling it a "write" problem...
and audit2allow says the correcting line should be:
allow ftpd_t user_home_dir_t:dir write;
Am I missing something ?
TIA!
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
