Login
Log in using an SSO provider:
Fedora Account System
Red Hat Associate
Red Hat Customer
Login using a Red Hat Bugzilla account
Forgot Password
Create an Account
Red Hat Bugzilla – Attachment 1027683 Details for
Bug 1221929
[SELinux] Update SELinux policies for samba (connect and read access)in RHEL6.6
Home
New
Search
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh92 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
[?]
This site requires JavaScript to be enabled to function correctly, please enable it.
then we tested in permissive mode and here are the AVCs
AVCs-in-permissive.txt (text/plain), 6.58 KB, created by
Milos Malik
on 2015-05-20 12:07:42 UTC
(
hide
)
Description:
then we tested in permissive mode and here are the AVCs
Filename:
MIME Type:
Creator:
Milos Malik
Created:
2015-05-20 12:07:42 UTC
Size:
6.58 KB
patch
obsolete
>---- >type=SYSCALL msg=audit(05/20/2015 11:47:32.883:2641) : arch=x86_64 syscall=chmod success=yes exit=0 a0=0x7f5a09202e40 a1=0644 a2=0x7f5a09202e60 a3=0x7d items=0 ppid=20413 pid=20439 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:47:32.883:2641) : avc: denied { setattr } for pid=20439 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:47:32.884:2642) : arch=x86_64 syscall=open success=yes exit=14 a0=0x7f5a09202e40 a1=O_RDWR a2=0x0 a3=0x1d items=0 ppid=20413 pid=20439 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:47:32.884:2642) : avc: denied { open } for pid=20439 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >type=AVC msg=audit(05/20/2015 11:47:32.884:2642) : avc: denied { read write } for pid=20439 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:47:32.873:2640) : arch=x86_64 syscall=connect success=yes exit=0 a0=0xb a1=0x7ffc57ab4740 a2=0x6e a3=0x0 items=0 ppid=20413 pid=20439 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:47:32.873:2640) : avc: denied { connectto } for pid=20439 comm=net path=/var/run/ctdb/ctdbd.socket scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:system_r:ctdbd_t:s0 tclass=unix_stream_socket >---- >type=SYSCALL msg=audit(05/20/2015 11:47:32.884:2643) : arch=x86_64 syscall=fcntl success=yes exit=0 a0=0xe a1=F_SETLKW a2=0x7ffc57ab4390 a3=0xc items=0 ppid=20413 pid=20439 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:47:32.884:2643) : avc: denied { lock } for pid=20439 comm=net path=/var/lib/ctdb/serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:47:32.884:2644) : arch=x86_64 syscall=fstat success=yes exit=0 a0=0xe a1=0x7ffc57ab4480 a2=0x7ffc57ab4480 a3=0xc items=0 ppid=20413 pid=20439 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:47:32.884:2644) : avc: denied { getattr } for pid=20439 comm=net path=/var/lib/ctdb/serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:50:35.954:2655) : arch=x86_64 syscall=connect success=yes exit=0 a0=0xb a1=0x7ffde0614100 a2=0x6e a3=0x0 items=0 ppid=23425 pid=23451 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:50:35.954:2655) : avc: denied { connectto } for pid=23451 comm=net path=/var/run/ctdb/ctdbd.socket scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:system_r:ctdbd_t:s0 tclass=unix_stream_socket >---- >type=SYSCALL msg=audit(05/20/2015 11:50:35.957:2656) : arch=x86_64 syscall=chmod success=yes exit=0 a0=0x7f8c32e35e40 a1=0644 a2=0x7f8c32e35e60 a3=0x7d items=0 ppid=23425 pid=23451 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:50:35.957:2656) : avc: denied { setattr } for pid=23451 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:50:35.957:2657) : arch=x86_64 syscall=open success=yes exit=14 a0=0x7f8c32e35e40 a1=O_RDWR a2=0x0 a3=0x1d items=0 ppid=23425 pid=23451 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:50:35.957:2657) : avc: denied { open } for pid=23451 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >type=AVC msg=audit(05/20/2015 11:50:35.957:2657) : avc: denied { read write } for pid=23451 comm=net name=serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:50:35.957:2658) : arch=x86_64 syscall=fcntl success=yes exit=0 a0=0xe a1=F_SETLKW a2=0x7ffde0613d50 a3=0xc items=0 ppid=23425 pid=23451 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:50:35.957:2658) : avc: denied { lock } for pid=23451 comm=net path=/var/lib/ctdb/serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file >---- >type=SYSCALL msg=audit(05/20/2015 11:50:35.957:2659) : arch=x86_64 syscall=fstat success=yes exit=0 a0=0xe a1=0x7ffde0613e40 a2=0x7ffde0613e40 a3=0xc items=0 ppid=23425 pid=23451 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=(none) ses=311 comm=net exe=/usr/bin/net subj=unconfined_u:system_r:samba_net_t:s0 key=(null) >type=AVC msg=audit(05/20/2015 11:50:35.957:2659) : avc: denied { getattr } for pid=23451 comm=net path=/var/lib/ctdb/serverid.tdb.0 dev=dm-0 ino=784904 scontext=unconfined_u:system_r:samba_net_t:s0 tcontext=unconfined_u:object_r:ctdbd_var_lib_t:s0 tclass=file
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1027683">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 1221929
:
1026645
|
1026677
|
1026709
|
1027682
| 1027683 |
1028708