-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Chris Adams wrote: > I'm trying to set up dovecot for IMAP. I'm using an external auth > program and a static userdb setting to define the home directories (all > owned by the same UID/GID). I set the whole directory tree to > mail_spool_t (thinking I'd avoid any SELinux access issues that way). > > What is odd is that it fails when SELinux is in enforcing mode, but not > in permissive, BUT I don't get any errors when it fails (e.g. no > "denied" messages in the kernel or audit logs). > > I've straced the daemon, and it fails at a chdir(). I know the > permissions are okay (it works when the system is in permissive mode), > so I figured it has to be related to SELinux, but I can't figure out > how. > > Suggestions? semodule -DB will turn on all dontaudit rules. Try your test. semodule -B will turn rules back on. Check for AVC messages. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkggnF0ACgkQrlYvE4MpobPbbACfVCswQcrmWou9ukmJLwAtQQr4 TukAoNis0d5u6YyiX6TzJDCZqNxuI1lf =HFTt -----END PGP SIGNATURE----- -- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list
