Bug 119581
Summary: | screen reports Permission denied | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Gregory Gulik <greg> | ||||
Component: | screen | Assignee: | Daniel Reed <djr> | ||||
Status: | CLOSED CURRENTRELEASE | QA Contact: | Brock Organ <borgan> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | rawhide | CC: | dwalsh, twaugh | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | i386 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2004-11-06 18:17:04 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 122683 | ||||||
Attachments: |
|
Description
Gregory Gulik
2004-03-31 15:47:50 UTC
Please paste the output of: rpm -q --whatprovides `which screen` There is no upstream version 4.14, nor am I seeing anything tagged as 4.14-3 internally. Also, our screen package should be using ~/.screen/ for its socket directory, not /tmp/uscreens/. Sorry, the version number was a typo. Here is the correct information: [greg@dell8100 greg]$ rpm -q --whatprovides `which screen` screen-4.0.1-4 [greg@dell8100 greg]$ uname -a Linux dell8100 2.6.3-2.1.253.2.1 #1 Fri Mar 12 14:01:55 EST 2004 i686 i686 i386 GNU/Linux [greg@dell8100 greg]$ screen Cannot make directory '/tmp/screens': Permission denied This was a fresh install on a spare hard drive. Created attachment 99054 [details]
SELinux audit2allow output (what screen can't access)
This appears to be a policy issue with SELinux. For now, you can type (as
root:sysadm_r:sysadm_t): "setenforce 0" to get screen running.
Obvious note: ignore xdm_t line. Adding 'tmp_domain($1_screen)' to macros/program/screen_macros.te gets further: $ screen audit(1080990982.120:0): avc: denied { read } for pid=3266 exe=/usr/bin/screen name=xterm dev=hdb1 ino=1171500 scontext=user_u:user_r:user_screen_t tcontext=system_u:object_r:usr_t tclass=file Cannot find terminfo entry for 'xterm'. Perhaps this is /usr/share/terminfo/x/xterm? Adding 'allow $1_screen_t usr_t:file { read };' to macros/program/screen_macros.te fixes this, and makes screen start up with no problems. Don't know if terminfo files should have any special file contexts. Added fixes in policy-1.9.2-10. Lon lets sit down on Monday and work our way through the rest of these. Dan Please reopen if you are still having difficulties. Thanks. |