Summary: SELinux is preventing npviewer.bin (nsplugin_t) "name_connect" jabber_client_port_t. Detailed Description: SELinux denied access requested by npviewer.bin. It is not expected that this access is required by npviewer.bin and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. Additional Information: Source Context unconfined_u:unconfined_r:nsplugin_t:s0 Target Context system_u:object_r:jabber_client_port_t:s0 Target Objects None [ tcp_socket ] Source npviewer.bin Source Path /usr/lib/nspluginwrapper/npviewer.bin Port 5222 Host (removed) Source RPM Packages nspluginwrapper-1.1.10-1.fc10 Target RPM Packages Policy RPM selinux-policy-3.5.13-30.fc10 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Plugin Name catchall Host Name (removed) Platform Linux (removed) 2.6.27.7-134.fc10.i686 #1 SMP Mon Dec 1 22:42:50 EST 2008 i686 i686 Alert Count 1 First Seen Thu 19 Mar 2009 01:06:11 PM EDT Last Seen Thu 19 Mar 2009 01:06:11 PM EDT Local ID 6abc3c2a-3809-42d6-9f26-10b69dcd044a Line Numbers Raw Audit Messages node=(removed) type=AVC msg=audit(1237482371.127:20): avc: denied { name_connect } for pid=3341 comm="npviewer.bin" dest=5222 scontext=unconfined_u:unconfined_r:nsplugin_t:s0 tcontext=system_u:object_r:jabber_client_port_t:s0 tclass=tcp_socket node=(removed) type=SYSCALL msg=audit(1237482371.127:20): arch=40000003 syscall=102 success=no exit=-13 a0=3 a1=9adf2c0 a2=1760924 a3=0 items=0 ppid=3136 pid=3341 auid=500 uid=500 gid=500 euid=500 suid=500 fsuid=500 egid=500 sgid=500 fsgid=500 tty=(none) ses=1 comm="npviewer.bin" exe="/usr/lib/nspluginwrapper/npviewer.bin" subj=unconfined_u:unconfined_r:nsplugin_t:s0 key=(null) Hash String generated from selinux-policy-3.5.13-30.fc10,catchall,npviewer.bin,nsplugin_t,jabber_client_port_t,tcp_socket,name_connect audit2allow suggests: #============= nsplugin_t ============== allow nsplugin_t jabber_client_port_t:tcp_socket name_connect;
*** This bug has been marked as a duplicate of bug 538428 ***