Bug 912001
Summary: | SELinux is preventing /usr/sbin/httpd from 'search' accesses on the directory /var/log/lightdm. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | antonio montagnani <antonio.montagnani> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 20 | CC: | dominick.grift, dwalsh, jorton, lvrabec, mail, mgrepl |
Target Milestone: | --- | Keywords: | Reopened |
Target Release: | --- | ||
Hardware: | i686 | ||
OS: | Unspecified | ||
Whiteboard: | abrt_hash:5d5639f04e2a8e0b940c60ceae70829b72b39680df960c482f4c915c4dad649e | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-11-21 12:24:09 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
antonio montagnani
2013-02-17 07:13:19 UTC
Do you want apache to share your /var/log/lightdm directory? Or is /var/log/lightdm a mount point? just surfing the web Package: (null) OS Release: Fedora release 18 (Spherical Cow) this is an updated F18 from F17, answers to comment #1 are no /var/log/lightdm is a (empty) directory Has this happened again or was this a one time thing? I have a feeling you can safely ignore this avc. no, it didn't happen again. Ok lets just close and repopen if it happens again. it happened again it happened again df | grep lightdm grep -r lightdm /etc/httpd [antonio@Acer5720 ~]$ su Password: [root@Acer5720 antonio]# df | grep lightdm [root@Acer5720 antonio]# grep -r lightdm /etc/httpd [root@Acer5720 antonio]# lightdm is missing, isn't it?? No idea why apache would search through this directory. Maybe Joe would have an idea? Vague possibilities: 1) some errant php script 2) the GNOME desktop web sharing thing? Is httpd being used on this system, if so how? 1) o idea about any script 2) what is the GNOME desktop web sharing thing? Gnome-user-share had been installed but it is not working properly see bug #901745 *** Bug 1010623 has been marked as a duplicate of this bug. *** Description of problem: at start-up immediately after login Additional info: reporter: libreport-2.1.7 hashmarkername: setroubleshoot kernel: 3.11.2-201.fc19.i686.PAE type: libreport Have been receiving similar notifications: SELinux is preventing /usr/sbin/httpd from 'search' accesses on the directory... /etc/openvpn /etc/unbound /home/<username> /var/lib/chrony /var/lib/clamav /var/lib/colord /var/lib/lightdm /var/lib/ntop Remembered installing gnome-user-share some time ago, so tried removing it. While running "yum remove gnome-user-share", noted that mod_dnssd was also removed. Following "systemctl restart httpd.service", there were no messages reported. Tested by re-installing gnome-user-share and restarting the Apache daemon again, and immediately the SELinux messages are shown. For reference, these are the package versions: gnome-user-share.x86_64 3.10.1-1.fc20 httpd.x86_64 2.4.6-6.fc20 mod_dnssd.x86_64 0.6-9.fc20 selinux-policy.noarch 3.12.1-122.fc20 selinux-policy-targeted.noarch 3.12.1-122.fc20 |