That's not exactly what I asked :)
I wanted to get notified, but it pulls so much stuff with it I decided against it.
I just wrote this simple script for now and scheduled it in cron to run daily.
#!/bin/bash
TMPFILE=/var/tmp/selinux-check.$$
trap "rm -f $TMPFILE" EXIT
set -o noclobber
/sbin/ausearch -m avc -ts yesterday --input-logs 2>&1|grep -v 'no matches' > $TMPFILE
if [ -s $TMPFILE ] ; then
if [ -t 1 ] ; then
cat $TMPFILE
else
mail -s "SELINUX Denials on `hostname`" root < $TMPFILE
fi
fi
Vadym
On Sep 29, 2010, at 10:39 AM, Daniel J Walsh wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 09/29/2010 10:25 AM, Vadym Chepkov wrote:
>> No one else finds this excessive? It's a server, after all
>>
>> Dependencies Resolved
>>
>> ====================================================================================================================================
>> Package Arch Version Repository Size
>> ====================================================================================================================================
>> Installing:
>> setroubleshoot-server i686 2.2.96-1.fc13 updates 340 k
>> Installing for dependencies:
>> ConsoleKit i686 0.4.1-5.fc13 fedora 81 k
>> ConsoleKit-libs i686 0.4.1-5.fc13 fedora 17 k
>> atk i686 1.30.0-1.fc13 fedora 206 k
>> audit-libs-python i686 2.0.4-3.fc13 fedora 60 k
>> avahi i686 0.6.25-7.fc13 updates 250 k
>> cairo i686 1.8.10-1.fc13 fedora 320 k
>> cups-libs i686 1:1.4.4-10.fc13 updates 345 k
>> dbus i686 1:1.2.24-1.fc13 fedora 211 k
>> dbus-python i686 0.83.0-6.fc12 fedora 173 k
>> dbus-x11 i686 1:1.2.24-1.fc13 fedora 39 k
>> dmz-cursor-themes noarch 0.4-3.fc13 fedora 390 k
>> eggdbus i686 0.6-2.fc13 fedora 91 k
>> enchant i686 1:1.6.0-1.fc13 fedora 50 k
>> gnutls i686 2.8.6-2.fc13 updates 353 k
>> gtk2 i686 2.20.1-1.fc13 fedora 3.5 M
>> hicolor-icon-theme noarch 0.12-1.fc13 fedora 42 k
>> hunspell i686 1.2.8-17.fc13 fedora 181 k
>> jasper-libs i686 1.900.1-15.fc13 fedora 140 k
>> libICE i686 1.0.6-2.fc13 fedora 52 k
>> libSM i686 1.1.0-7.fc12 fedora 25 k
>> libXcomposite i686 0.4.1-2.fc13 fedora 17 k
>> libXcursor i686 1.1.10-4.fc13 fedora 33 k
>> libXdamage i686 1.1.2-2.fc13 fedora 16 k
>> libXext i686 1.1.2-2.fc13 updates 33 k
>> libXfixes i686 4.0.4-2.fc13 fedora 19 k
>> libXft i686 2.1.14-1.fc13 fedora 48 k
>> libXi i686 1.3.2-1.fc13 updates 32 k
>> libXinerama i686 1.1-2.fc13 fedora 15 k
>> libXrandr i686 1.3.0-5.fc13 fedora 29 k
>> libXrender i686 0.9.5-1.fc13 fedora 26 k
>> libdaemon i686 0.14-1.fc13 fedora 27 k
>> libglade2 i686 2.6.4-3.fc12 fedora 57 k
>> libnotify i686 0.5.0-1.fc13 updates 35 k
>> libselinux-python i686 2.0.94-2.fc13 updates 197 k
>> libsemanage-python i686 2.0.45-1.fc13 fedora 80 k
>> libsexy i686 0.1.11-15.fc13 fedora 42 k
>> libtasn1 i686 2.4-2.fc13 fedora 239 k
>> libthai i686 0.1.14-2.fc13 fedora 185 k
>> libtiff i686 3.9.4-1.fc13 updates 134 k
>> libxfce4util i686 4.6.2-1.fc13 updates 113 k
>> libxfcegui4 i686 4.6.4-1.fc13 updates 315 k
>> libxml2-python i686 2.7.7-1.fc13 fedora 312 k
>> make i686 1:3.81-19.fc13 updates 385 k
>> pango i686 1.28.0-1.fc13 fedora 349 k
>> pixman i686 0.18.0-1.fc13 fedora 154 k
>> policycoreutils-python i686 2.0.83-28.fc13 updates 332 k
>> polkit i686 0.96-1.fc13 fedora 156 k
>> pygobject2 i686 2.21.1-6.fc13 fedora 181 k
>> python-decorator noarch 3.1.2-2.fc13 fedora 15 k
>> python-slip noarch 0.2.13-1.fc13 updates 26 k
>> python-slip-dbus noarch 0.2.13-1.fc13 updates 28 k
>> setools-libs i686 3.3.7-7.fc13 updates 400 k
>> setools-libs-python i686 3.3.7-7.fc13 updates 211 k
>> setroubleshoot-plugins noarch 2.1.61-1.fc13 updates 536 k
>> startup-notification i686 0.10-4.fc13 fedora 37 k
>> xcb-util i686 0.3.6-1.fc12 fedora 37 k
>> xfce4-notifyd i686 0.1.0-3.fc12 fedora 56 k
>> xfconf i686 4.6.2-1.fc13 updates 133 k
>> xml-common noarch 0.6.3-32.fc13 fedora 9.4 k
>>
>> Transaction Summary
>> ====================================================================================================================================
>> Install 60 Package(s)
>>
>> Total download size: 12 M
>> Installed size: 47 M
>> Is this ok [y/N]: N
>>
>>
>>
>>
>>
>> --
>> selinux mailing list
>> selinux@xxxxxxxxxxxxxxxxxxxxxxx
>> https://admin.fedoraproject.org/mailman/listinfo/selinux
> You can remove it. setroubleshoot-server can be setup to send email
> when it receives and AVC. But if you do not change that I would
> recommend removing it.
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (GNU/Linux)
> Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAkyjT54ACgkQrlYvE4MpobNLuQCgtPB+c/yJz21ey7AncPCA+XO8
> ge0AoOErCRjJTx9EdegGgk+ff4xtjgPT
> =9FFt
> -----END PGP SIGNATURE-----
--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux
