Bug 450503 - selinux denial with clamd.exim
Summary: selinux denial with clamd.exim
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Fedora
Classification: Fedora
Component: exim
Version: 9
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: David Woodhouse
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2008-06-09 09:41 UTC by David Woodhouse
Modified: 2008-06-10 19:10 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2008-06-10 19:10:24 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)

Description David Woodhouse 2008-06-09 09:41:23 UTC 
Starting clamd.exim: ERROR: Can't open /var/log/clamd.exim in append mode (check
permissions!).
ERROR: Problem with internal logger. Please check the permissions on the
/var/log/clamd.exim file.


type=AVC msg=audit(1213004173.692:15501): avc:  denied  { append } for 
pid=31721 comm="clamd.exim" name="clamd.exim" dev=dm-1 ino=1802252
scontext=unconfined_u:system_r:clamd_t:s0
tcontext=unconfined_u:object_r:var_log_t:s0 tclass=file
type=SYSCALL msg=audit(1213004173.692:15501): arch=40000003 syscall=5 success=no
exit=-13 a0=9def3e0 a1=441 a2=1b6 a3=440 items=0 ppid=31720 pid=31721 auid=0
uid=93 gid=93 euid=93 suid=93 fsuid=93 egid=93 sgid=93 fsgid=93 tty=pts2 ses=135
comm="clamd.exim" exe="/usr/sbin/clamd" subj=unconfined_u:system_r:clamd_t:s0
key=(null)

Advice on how I should fix this would be welcome. I'm not wonderfully happy with
how clamd works for various uses, including exim.
Comment 1 Daniel Walsh 2008-06-10 19:10:24 UTC 
restorecon -R -v /var/log

Something recreated this file with the wrong context.

Not sure what did it but this will fix for now.
Note You need to log in before you can comment on or make changes to this bug.