Created attachment 332175 [details] audit message Description of problem: selinux-policy-targeted-3.5.13-44.fc10.noarch logrotate OCS Inventory Server audit message Version-Release number of selected component (if applicable): selinux-policy-targeted-3.5.13-44.fc10.noarch ocsinventory-server-1.02-0.10.rc3.fc10.noarch logrotate-3.7.7-1.fc10.i386 How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Are you sure this directory is labeled correctly? matchpathcon /var/log/ocsinventory-server /var/log/ocsinventory-server system_u:object_r:httpd_log_t:s0 This looks like local customization?
*** Bug 487186 has been marked as a duplicate of this bug. ***
Looking at the post installs of ocsinventory-server rpm -qf --scripts /var/log/ocsinventory-server postinstall scriptlet (using /bin/sh): ( # New File context semanage fcontext -a -s system_u -t httpd_log_t -r s0 "/var/log/ocsinventory-server(/.*)?" # files created by app restorecon -R /var/log/ocsinventory-server ) &>/dev/null ||: postuninstall scriptlet (using /bin/sh): if [ "$1" -eq "0" ]; then # Remove the File Context semanage fcontext -d "/var/log/ocsinventory-server(/.*)?" &>/dev/null || : fi So you definitely have labeled this differently.
If I did it certainly wasn't intentional. How would I do that? As I said in the other bug, I ran restorecon -v /var/log/ocsinventory-server. Is there another command that might have the side effect of changing this?
What does ls -lZ /var/log/ocsinventory-server Say now?
It returns nothing after the ./autorelabel I did on reboot to pick up the latest test kernel. That is, it returns a new command prompt immediately. It's like I don't have any access there anymore. If I run ls -lZ /var/log | less as root I get the result below: drwxr-xr-x apache root system_u:object_r:httpd_sys_content_rw_t:s0 ocsinventory-server