----- Original Message ----- > From: "lejeczek" <peljasz@xxxxxxxxxxx> > To: selinux@xxxxxxxxxxxxxxxxxxxxxxx > Sent: Wednesday, November 2, 2016 6:30:30 PM > Subject: fail2ban to rpm?? > > hi everybody > on my one system I see something weir... > > setroubleshoot[58420]: SELinux is preventing > /usr/bin/python2.7 from getattr access on the file > /usr/bin/rpm. For complete SELinux messages. run sealert -l > 892542a6-b3ea-48eb-b76f-cadffdbdbb84 > Nov 02 22:21:27 rider.private.ccnr.ceb.private.cam.ac.uk > python[58420]: SELinux is preventing /usr/bin/python2.7 from > getattr access on the file /usr/bin/rpm. > > Source Context > system_u:system_r:fail2ban_client_t:s0 > Target Context system_u:object_r:rpm_exec_t:s0 > Target Objects /usr/bin/rpm [ file ] > Source fail2ban-client > Source Path /usr/bin/python2.7 > > fail2ban wants to run rpm ??? > unless some binaries I have mislabelled this would be > suspicious, no?? What do you think? Do you know how this warning was triggered? We only allow this permission for rpm files in the /tmp dir > THXALOT > L. > _______________________________________________ > selinux mailing list -- selinux@xxxxxxxxxxxxxxxxxxxxxxx > To unsubscribe send an email to selinux-leave@xxxxxxxxxxxxxxxxxxxxxxx > -- Simon Sekidde * Red Hat, Inc. * Tyson's Corner, VA gpg: 5848 958E 73BA 04D3 7C06 F096 1BA1 2DBF 94BC 377E _______________________________________________ selinux mailing list -- selinux@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to selinux-leave@xxxxxxxxxxxxxxxxxxxxxxx
