Red Hat Bugzilla – Bug 208604
security error trying to mount USB flash memory key
Last modified: 2007-11-30 17:11:44 EST
Description of problem:
I installed updates today of various packages, including
selinux-policy-targeted.noarch 2.3.16-6. Now when I log in to gnome and plug in
a USB memory key, I get an error in a dialog box:
Cannot mount volume.
A security policy in place prevents this sender from sending this message to
this recipient, see message bus configuration file (rejected message had
interface "org.freedesktop.Hal.Device.Volume" member "Mount" error name
"(unset)" destination "org.freedesktop.Hal")
I assume this is a glitch in the new targeted policy package.
Steps to Reproduce:
1. log in to gnome
2. put in a usb key
The key should be mounted.
I didn't have any problem using this USB key on this machine until after I ran
'yum update' this morning and rebooted.
any avc messages in /var/log/messages or /var/log/audit/audit.log?
None that I can find. I restarted my machine after replacing SELINUX=enforcing
with SELINUX=permissive in /etc/selinux/config and the usb key works fine.
I just realized, there isn't even a /var/log/audit directory on this computer.
Is there some setting I have to put in somewhere to get it to keep a log?
You can install the audit package and that directory will be created. But using
dmesg or looking in /var/log/messages, you do not see avc messages?
Hmm. I installed audit and reset /etc/selinux/config to enforcing, and
rebooted, and now my USB key works. This is after running yum update this
afternoon, so maybe one of these new packages fixed it. I'll just list the ones
that seem relevant:
dbus-devel.i386 & x86_64 0.93-3.fc6
So I will close this bug, reopen if it comes back. You might want to try out
the setroubleshoot package also.