Bug 848280

Summary: SELinux is spamming about tmpwatch not being able to access files
Product: [Fedora] Fedora Reporter: Denys <rtvd>
Component: selinux-policyAssignee: Miroslav Grepl <mgrepl>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: high Docs Contact:
Priority: unspecified    
Version: 17CC: dominick.grift, dwalsh, john.j35, mgrepl
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-08-15 10:32:58 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
SELinux report
none
SELinux report none

Description Denys 2012-08-15 06:48:19 UTC 
On a freshly installed Fedora Core F17, x86_64 KDE edition, SELinux Alert is spamming with errors all day long. There is no way to stop it.

Two bugs were already opened on this topic:

https://bugzilla.redhat.com/show_bug.cgi?id=837478

https://bugzilla.redhat.com/show_bug.cgi?id=837700

They were declared to be duplicates (not exactly correct) and eventually closed with NOTABUG.

No, this is a bug. And there is no resolution for it as of now.
More than that, it is an important bug as when SELinux Alert is screaming many times a day people just assume it is wrong. This can lead people to ignoring other cases to, thus making SELinux Alert useless.

And by the way, SELinux Alert did not report anything when vsftpd was denied access to user directories. But that is another story.
Comment 1 Denys 2012-08-15 07:12:53 UTC 
Also, systemd-tmpfiles tries to access the same file(s) with the same outcome.
Comment 2 Denys 2012-08-15 07:15:11 UTC 
Created attachment 604520 [details]
SELinux report
Comment 3 Denys 2012-08-15 07:15:29 UTC 
Created attachment 604521 [details]
SELinux report
Comment 4 Daniel Walsh 2012-08-15 10:32:58 UTC 
Please reopen an existing bug and state your complaint, opening a new bug is a waste of time.

*** This bug has been marked as a duplicate of bug 837478 ***
Comment 5 John L. Pierce 2012-08-16 03:05:01 UTC 
Ok, I have the same exact problem as stated above.  If I drill down to /var/tmp and try to do rm -rf kdecache-root I get permission errors for all of the subdirectories and files located in that folder.
Comment 6 Daniel Walsh 2012-08-16 13:40:53 UTC 
You have to do this as root.