Bug 146219

Summary: Starting httpd, "audit(1106701332.810:0): avc: denied" happens in targeted
Product: [Fedora] Fedora Reporter: sangu <sangu.fedora>
Component: selinux-policy-targetedAssignee: Daniel Walsh <dwalsh>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhide   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-02-15 14:38:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description sangu 2005-01-26 01:20:29 UTC
Description of problem:
$service httpd start
---
in dmesg
[...]
audit(1106701332.810:0): avc:  denied  { search } for  pid=4767
exe=/usr/sbin/httpd name=selinux dev=hda8 ino=211809
scontext=root:system_r:httpd_t tcontext=system_u:object_r:selinux_config_t
tclass=dir
audit(1106701332.811:0): avc:  denied  { write } for  pid=4767
exe=/usr/sbin/httpd name=mibs dev=hda8 ino=409055 scontext=root:system_r:httpd_t
tcontext=system_u:object_r:usr_t tclass=dir

Version-Release number of selected component (if applicable):
selinux-policy-targeted-1.21.3-1

How reproducible:
always


Steps to Reproduce:
1. service httpd start
2.
3.
  
Actual results:


Expected results:


Additional info:
policy is targeted. 
This same problem happens in selinux-policy-targeted-1.21.3-2.

Comment 1 Daniel Walsh 2005-01-26 22:59:00 UTC
Fixed in selinux-policy-targeted-1.21.3-6

Basically we will dontaudit these.  You can ignore them for now.