I'm seeing AVCs related to netlink_audit_socket when the screen saver dialog is run. gnome-screensaver-dialog opens a pam session which uses pam_unix which in turn runs the unix_chkpwd helper. I'm thinking that gnome-screensaver-dialog is going to need some policy including possibly authlogin_common_auth_domain_template. Would it be best to add policy for this to gnome or should it have it's own module? -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
