When I checked my /var/log/audit/audit.log file I noticed three denial messages and I can't figure out why they are there. Has anyone encountered anything similar before?
==========================
type=AVC msg=audit(1293393237.358:102): avc: denied { search } for pid=3451 comm="ps" name="3279" dev=proc ino=9320 scontext=system_u:system_r:httpd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=dir
Was caused by:
Missing type enforcement (TE) allow rule.
You can use audit2allow to generate a loadable module to allow this access.
type=AVC msg=audit(1293393237.358:102): avc: denied { read } for pid=3451 comm="ps" name="stat" dev=proc ino=9816 scontext=system_u:system_r:httpd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=file
Was caused by:
Missing type enforcement (TE) allow rule.
You can use audit2allow to generate a loadable module to allow this access.
type=AVC msg=audit(1293393237.358:102): avc: denied { open } for pid=3451 comm="ps" name="stat" dev=proc ino=9816 scontext=system_u:system_r:httpd_t:s0 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass=file
Was caused by:
Missing type enforcement (TE) allow rule.
You can use audit2allow to generate a loadable module to allow this access.
==========================
-- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
