From Bugzilla Helper: User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Description of problem: This is what i get when i start squid: audit(1119976504.369:0): avc: denied { search } for pid=3576 exe=/usr/bin/ntlm_auth name=samba dev=sda2 ino=145480 scontex t=root:system_r:squid_t tcontext=system_u:object_r:samba_etc_t tclass=dir This is propably due to enabling ntlm authentication in squid. squid.conf: auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp auth_param ntlm children 30 auth_param ntlm max_challenge_reuses 0 auth_param ntlm max_challenge_lifetime 2 minutes Version-Release number of selected component (if applicable): selinux-policy-targeted-1.17.30-2.88 How reproducible: Always Steps to Reproduce: 1.Put above config in your squid.conf 2.service squid start Actual Results: squid's ntlm helper is blocked Expected Results: squid's ntlm helper should not be blocked/denied Additional info: The error accurs a few times for every child.
Fixed in selinux-policy-targeted-1.25.1-7
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2005-645.html