Description of problem: With name service caching daemon (nscd) enabled, locate generates an selinux violation that results in Version-Release number of selected component (if applicable): [root@smog ~]# cat /etc/issue ; rpm -q selinux-policy-targeted mlocate Fedora release 7 (Moonshine) Kernel \r on an \m selinux-policy-targeted-2.6.4-12.fc7 mlocate-0.16-1 How reproducible: Steps to Reproduce: 1. enable nscd at installation 2. wait for updatedb to run Actual results: Error message SELinux is preventing /usr/bin/updatedb (locate_t) "write" to socket (nscd_var_run_t). Expected results: No error Additional info: sealert output attached
Created attachment 156951 [details] sealert output
Are you running in permissive mode. This avc should be blocked in enforcing mode. If the avc message does not show up in enforcing mode it is not a bug.