Bug 147907
Summary: | Cron script denials | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ivan Gyurdiev <ivg231> |
Component: | selinux-policy-strict | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED RAWHIDE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-04-21 15:15:15 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ivan Gyurdiev
2005-02-12 15:46:09 UTC
Were you running in permissive mode? If so these are not bugs? I can't remember anymore - this was so long ago. I remember the logrotate thing got fixed, and the other one I'm not seeing right now, so closing.... Right now I see denials in the log like this, where logwatch creates a folder under root_t, and writes to it: audit(1113984123.023:0): avc: denied { ioctl } for pid=6384 exe=/usr/bin/perl path=/logwatch.ROKh211G/messages dev=dm-0 ino=713955 scontext=system_u:system_r:system_crond_t tcontext=system_u:object_r:root_t tclass=file audit(1113984123.142:0): avc: denied { write } for pid=6384 exe=/usr/bin/perl path=/logwatch.ROKh211G/messages dev=dm-0 ino=713955 scontext=system_u:system_r:system_crond_t tcontext=system_u:object_r:root_t tclass=file but I suppose that's another bug to file. |