Description of problem: When switching networks, it seems that NetworkManager tries to kill (and presumably restart?) all nscd processes, but the selinux policy prevents it from doing this. I suspect this may be contributing to the problems I have with programs (e.g., fetchmail in daemon mode) using stale DNS information when switching networks. Version-Release number of selected component (if applicable): selinux-policy-2.2.23-15 selinux-policy-targeted-2.2.23-15 NetworkManager-0.6.0-3 nscd-2.4-4 How reproducible: Always, I think. I saw it in FC4 as well when I tried running nscd. Steps to Reproduce: 1. # /sbin/service nscd start (if it's not already running) 2. # tail -f /var/log/audit/audit.log | grep denied 3. switch or re-select a wireless network using the menu on the NetworkManager GNOME tray icon. Actual results: type=AVC msg=audit(1142915564.632:866): avc: denied { signal } for pid=28802 comm="killall" scontext=system_u:system_r:NetworkManager_t:s0 tcontext=user_u:system_r:nscd_t:s0 tclass=process Expected results: No selinux denials. Additional info: I'm not actually sure if I'm *supposed* to be using nscd with NetworkManager, although the fact that NetworkManager is doing this suggests that I am.
Fixed in selinux-policy-targeted-2.2.29-2.fc5
Closing as these have been marked as modified, for a while. Feel free to reopen if not fixed