Description of problem: The virtlogd daemon is currently given the same context as libvirtd. This is essentially unrestricted host access which is not at all desirable. The virtlogd daemon is a small single purpose daemon whose only job is logging. It should have a dedicated context which strictly controls what it is permitted todo. I have written a policy that can do this and submitted upstream https://github.com/fedora-selinux/selinux-policy/pull/103
selinux-policy-3.13.1-180.fc24 has been submitted as an update to Fedora 24. https://bodhi.fedoraproject.org/updates/FEDORA-2016-ffb5ed99b4
selinux-policy-3.13.1-180.fc24 has been pushed to the Fedora 24 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-ffb5ed99b4
selinux-policy-3.13.1-180.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.