Red Hat Bugzilla – Bug 227248
avc denial for useradd
Last modified: 2007-11-30 17:11:56 EST
Description of problem:
Clean install of Fedora 7 test 1, upgraded to latest Rawhide. Every now and then
I get a new log entry stating that "SELinux is preventing /usr/sbin/useradd
(useradd_t) "read write" to faillog (var_log_t).
I have used system-config-users to create a new user and that seemed to work,
but after that I have been getting periodic repeats of this error, which is odd.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Use system-config-users to add new user
This apparently triggers repeated failure logs
restorecon /var/log/faillog should fix.
This is fixed in the latest installer to label /var/log/faillog correctly.
Thanks, just did that (it changes from var_log_t to faillog_t). The bizarre
thing is, using Rawhide on another machine, with SELinux set to permissive, I've
not had any useradd failures in the log even though the file context was wrong.