Bug 809505
Summary: | [RFE] Notify remote user of SELinux enforcing mode on AVC | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Michal Novotny <minovotn> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | rawhide | CC: | areis, dominick.grift, dwalsh, mgrepl, mmalik |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2012-12-15 19:12:53 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Michal Novotny
2012-04-03 14:39:08 UTC
I can think of two ways how to notify the remote user of the fact that AVCs appeared: * via bash (bash is periodically checking for new emails. What about periodic checking of new AVCs ?) * via setroubleshoot (f.e. setroubleshoot server could send an email when new AVCs appear, but max. 1 email per minute) Maybe selinux-policy is not the right component, but it's a good place to start a discussion about the remote user notification mechanism. setroubleshoot can be currently setup to send email on avc arrival, It can be setup out of the box to send email to root. Also it logs to /var/log/messages, it has been suggested that logwatch start watching for these messages. |