Description of problem: SELinux is preventing dhclient from using the 'noatsecure' accesses on a process. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that dhclient should be allowed noatsecure access on processes labeled dhcpc_t by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep dhclient /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:NetworkManager_t:s0 Target Context system_u:system_r:dhcpc_t:s0 Target Objects Unknown [ process ] Source dhclient Source Path dhclient Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-128.18.fc22.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 4.2.3-200.fc22.x86_64 #1 SMP Thu Oct 8 03:23:55 UTC 2015 x86_64 x86_64 Alert Count 1 First Seen 2015-10-22 13:53:02 BST Last Seen 2015-10-22 13:53:02 BST Local ID 9332280b-5f33-40ed-94b2-7c3a1682c784 Raw Audit Messages type=AVC msg=audit(1445518382.63:2964): avc: denied { noatsecure } for pid=15072 comm="dhclient" scontext=system_u:system_r:NetworkManager_t:s0 tcontext=system_u:system_r:dhcpc_t:s0 tclass=process permissive=0 Hash: dhclient,NetworkManager_t,dhcpc_t,process,noatsecure Version-Release number of selected component: selinux-policy-3.13.1-128.18.fc22.noarch Additional info: reporter: libreport-2.6.3 hashmarkername: setroubleshoot kernel: 4.2.3-200.fc22.x86_64 type: libreport
*** This bug has been marked as a duplicate of bug 1274235 ***