Re: avc: denied { write } for pid=5267 comm="dhcpd" name="dhcpd.pid"

Antonio Olivares <olivares14031@xxxxxxxxx> · Mon, 17 Nov 2008 14:27:26 -0800 (PST)



--- On Mon, 11/17/08, Daniel J Walsh <dwalsh@xxxxxxxxxx> wrote:

> From: Daniel J Walsh <dwalsh@xxxxxxxxxx>
> Subject: Re: avc: denied { write } for pid=5267 comm="dhcpd" name="dhcpd.pid"
> To: olivares14031@xxxxxxxxx
> Cc: "Paul Howarth" <paul@xxxxxxxxxxxx>, fedora-selinux-list@xxxxxxxxxx
> Date: Monday, November 17, 2008, 2:25 PM
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Antonio Olivares wrote:
> >> /var/run/dhcpd.pid should be dhcpd_var_run_t, not
> >> var_run_t.
> >>
> >> Try:
> >> # restorecon -v /var/run /var/run/dhcpd.pid
> >>
> >> Paul.
> > 
> > Tried that several times and now I get : 
> > 
> > Nov 17 16:18:15 localhost kernel: type=1400
> audit(1226960295.233:8): avc:  denied  { read write } for 
> pid=11094 comm="restorecon"
> path="socket:[12486]" dev=sockfs ino=12486
> scontext=unconfined_u:unconfined_r:setfiles_t:s0-s0:c0.c1023
> tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
> tclass=unix_stream_socket
> > 
> > 
> > 
> > 
> > Thank you very much for helping :)
> > 
> > Regards,
> > 
> > 
> > Antonio 
> > 
> > 
> >       
> > 
> > --
> > fedora-selinux-list mailing list
> > fedora-selinux-list@xxxxxxxxxx
> >
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
> That looks like a leaked file descriptor.  Are you using a
> konsole?
Yes and working on KDE 
> 
> kde has a known leak.
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
> Comment: Using GnuPG with Fedora -
> http://enigmail.mozdev.org
> 
> iEYEARECAAYFAkkh70QACgkQrlYvE4MpobNCvQCfZk4LO2bqX3rb4dtM4v/v6k3L
> 1NgAnjzKVXC8Og/LQzZ7RKsvZ9ikOpx8
> =aMwo
> -----END PGP SIGNATURE-----

Thanks,

Antonio 


--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list