From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; fi-FI; rv:1.7.8) Gecko/20050524 Fedora/1.0.4-4 Firefox/1.0.4 Description of problem: I have been using the "boincctl" script in http://boinc.berkeley.edu/autostart_dennett.txt to start BOINC (http://boinc.berkeley.edu/) at boot in FC2 and FC3 without problems but after upgrading to FC4, the script fails when SELinux is in enforcing mode. Same happens with "service boincctl start" from the command line. Version-Release number of selected component (if applicable): selinux-policy-targeted-1.23.16-6 How reproducible: Always Steps to Reproduce: 1. Install BOINC and the script in the URL 2. Edit the script and add it to startup with chkconfig 3. Reboot Actual Results: On the console: Starting boinc su: /bin/bash: Permission denied In the system log: audit(1118913920.599:2): avc: denied { transition } for pid=2184 comm="su" name=bash dev=dm-0 ino=45101 scontext=system_u:system_r:initrc_t tcontext=user_u:system_r:unconfined_t tclass=process Expected Results: Console shows: Starting boinc [OK] Additional info: Startup succeeds with SELinux in permissive mode.
Does it work if you use runuser as opposed to su? Dan
Yes, replacing su with runuser works.