Red Hat Bugzilla – Bug 209950
many avc denied messages after setting mls
Last modified: 2007-11-30 17:11:45 EST
Description of problem:
After selecting permissive/mls, setting /.autorelabel and reboot. Then reboot
again to get "clean" record. Get 21 avc denied messages during bootup/root
login (see attachment). Also attaching that portion of /var/log/messages for
see related for strict policy:
Version-Release number of selected component (if applicable):
fc6-devel as of 10/8/2006, minimal server fresh install (no X)
Created attachment 138014 [details]
mls policy avc messages
Created attachment 138015 [details]
/var/log/messages for mls bootup
If you change a user from user_r to staff_r you need relabel the homedir
restorecon -R -v /home should do the trick.
anacron.pid seems to have the incorrect context on it. Not sure how it got
created incorrectly but restorecon /var/run/anacron.pid
pcscd needs policy to work correctly. Patches accepted :^)
multipath.stati looks like it needs a lvm_exec_t label on it?
Please retry with selinux-policy-2.4.1-4
I assume that 2.4.1-4 will be in testing in a day or so ... 2.4.1-3 is there now.
2.4.1-4 is out on my people page now. Should be in BETA2 and rawhide.
could not find it at http://people.redhat.com/dwalsh/ ... could you be mnore
specific as to where it is.
I would also appreciate it if this update was pushed to updates/testing (2.4.1-3
is there now).
Should be fixed in the current release