I have my ~/Mail symlinked to /mnt/raid/Mail. I guess this makes policy unhappy, as I have a ton of these.. audit(1163322126.028:4): avc: denied { search } for pid=27344 comm="procmail" name="mnt" dev=md0 ino=64323585 scontext=system_u:system_r:procmail_t:s0 tcontext=system_u:object_r:mnt_t:s0 tclass=dir audit(1163667725.468:47): avc: denied { search } for pid=10093 comm="formail" name="mnt" dev=md0 ino=64323585 scontext=system _u:system_r:procmail_t:s0 tcontext=system_u:object_r:mnt_t:s0 tclass=dir I get a bunch of those every time cron.daily runs at 4am.
Yes this is a local customization. You should run grep procmail /var/log/audit/audit.log | audit2allow -M myprocmail Then load the the custom policy.