Hi Daniel, Thanks for your reply, looks like that may be what I need. :) I assume again this wont upset teh running of the machine when this is performed? Also is theis change persisteant after reboots? Is there a way for making a new policy to allow the required actions instead of removing the dontaudit all together? many thanks On 17 April 2010 00:45, Daniel J Walsh <dwalsh@xxxxxxxxxx> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > The problem you are seeing is dontaudit rules. snmp is not allowed to > read content within the users home dirs. If you want to turn off > dontaudit rules you can by executing > > semodule -DB > > semodule -B > > Will turn the rules back on. > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.14 (GNU/Linux) > Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ > > iEYEARECAAYFAkvIW+cACgkQrlYvE4MpobOmqACgvgMQ6oh6XFKuDhzTDIDftRFL > xVkAoIbYMk88+HHHMxcJfkc+R/U2aVf7 > =x7Ni > -----END PGP SIGNATURE----- > -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
