Stanisław T. Findeisen pisze:
Hello
Hopefully you Fedora/SELinux developers already know that Postfix does
not work correctly by default in Fedora Core 7?
audit(1189079035.093:14): avc: denied { append } for
pid=2573 comm="local" name="stf" dev=sda1 ino=5881977
scontext=system_u:system_r:postfix_local_t:s0
tcontext=root:object_r:mail_spool_t:s0 tclass=file
This used to happen to me when I tried (as an ordinary user) to send
email to myself. The file that Postfix was trying to append to was my
own mail file (/var/spool/mail/stf).
I had to add this rule:
allow postfix_local_t mail_spool_t:file append;
What's more, it turned out that checkmodule (policy language compiler)
is not present, so I had to install one from Fedora Core 6.
Yep i can confrim it. It is broken from last postfix update i think.
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
