Bug 356201 - snmpd startup reports a "search" access to mail (etc_mail_t) violation
Summary: snmpd startup reports a "search" access to mail (etc_mail_t) violation
Keywords:
Status: CLOSED NEXTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: selinux-policy
Version: 5.0
Hardware: i386
OS: Linux
low
medium
Target Milestone: ---
: ---
Assignee: Daniel Walsh
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2007-10-29 06:19 UTC by Robert Harker
Modified: 2007-11-30 22:07 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2007-10-30 02:16:41 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Robert Harker 2007-10-29 06:19:14 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.12) Gecko/20071020 CentOS/1.5.0.12-6.el5.centos Firefox/1.5.0.12 pango-text

Description of problem:
When I start up snmpd using the default snmpd.conf file provieded with RHE 5.0
(CentOS 5.0) I get the following SElinux error in /var/log/messages:
Oct 28 23:02:39 harker setroubleshoot:      SELinux is preventing /usr/sbin/snmpd (snmpd_t) "search" access to mail (etc_mail_t).      For complete SELinux messages. run sealert -l 37a5928a-d008-466d-8c15-87f75b59a2f9




Version-Release number of selected component (if applicable):
selinux-policy-2.4.6-30

How reproducible:
Always


Steps to Reproduce:
1.Start snmpd:
   service start snmpd
2. Look a messages log file:
   tail /var/log/messages


Actual Results:
Not sure yet

Expected Results:


Additional info:
I think this is an oversight in the SElinux policy for snmpd that should be corrected in the next maintenance relase
Comment 1 Daniel Walsh 2007-10-30 02:16:41 UTC 
Try the U1 policy

http://people.redhat.com/~dwalsh/SELinux/RHEL5/noarch/
Note You need to log in before you can comment on or make changes to this bug.