Description of problem: The empty log files created after a logrotate run have (at least in /var/log) the default context var_log_t rather than any specific file context that might be required, e.g. faillog_t for /var/log/btmp, rpm_log_t for /var/log/rpmpkgs. Version-Release number of selected component (if applicable): logrotate-3.7.6-1.3.fc8 How reproducible: Easy Steps to Reproduce: 1. Install Fedora 8 with a default config 2. Wait for logrotate to do its stuff 3. See the SELinux denials that result, e.g. type=AVC msg=audit(1199231495.982:35629): avc: denied { append } for pid=30802 comm="sshd" name="btmp" dev=dm-3 ino=1212485 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_log_t:s0 tclass=file
Same problem on my systems (also F8, i386 and x86_64). Looks also like bug #427150 is the same issue.
I have examined the files on my desktop and they happen to have also wrong contexts. I see no AVC messages though... Thanks for reporting.
(In reply to comment #2) > I have examined the files on my desktop and they happen to have also wrong > contexts. I see no AVC messages though... Thanks for reporting. Your desktop probably doesn't have an Internet-accessible ssh daemon getting pounded by script kiddies and generating login failures, hence no AVCs.
*** Bug 427150 has been marked as a duplicate of this bug. ***
logrotate-3.7.6-2.1.fc8 has been pushed to the Fedora 8 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update logrotate'
*** Bug 428500 has been marked as a duplicate of this bug. ***
logrotate-3.7.6-2.1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.