Summary: SELinux is preventing /bin/bash "getattr" access on /etc/rc.d/init.d/sssd. Detailed Description: SELinux denied access requested by gdm. It is not expected that this access is required by gdm and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://docs.fedoraproject.org/selinux-faq-fc5/#id2961385) Please file a bug report. Additional Information: Source Context system_u:system_r:xdm_t:s0-s0:c0.c1023 Target Context system_u:object_r:sssd_initrc_exec_t:s0 Target Objects /etc/rc.d/init.d/sssd [ file ] Source gdm Source Path /bin/bash Port <Unknown> Host (removed) Source RPM Packages bash-4.1.7-1.fc13 Target RPM Packages sssd-1.2.0-12.fc13 Policy RPM selinux-policy-3.7.19-28.fc13 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Plugin Name catchall Host Name (removed) Platform Linux (removed) 2.6.33.5-124.fc13.x86_64 #1 SMP Fri Jun 11 09:38:12 UTC 2010 x86_64 x86_64 Alert Count 3 First Seen Sun 04 Jul 2010 10:00:51 PM EDT Last Seen Mon 05 Jul 2010 07:52:54 AM EDT Local ID 884010dd-f1eb-43a0-965b-81acb7b616b3 Line Numbers Raw Audit Messages node=(removed) type=AVC msg=audit(1278330774.463:85): avc: denied { getattr } for pid=1377 comm="gdm" path="/etc/rc.d/init.d/sssd" dev=sda3 ino=71092 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=system_u:object_r:sssd_initrc_exec_t:s0 tclass=file node=(removed) type=SYSCALL msg=audit(1278330774.463:85): arch=c000003e syscall=4 success=no exit=-13 a0=1b56c80 a1=7fff447b62a0 a2=7fff447b62a0 a3=8 items=0 ppid=1 pid=1377 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="gdm" exe="/bin/bash" subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 key=(null) Hash String generated from catchall,gdm,xdm_t,sssd_initrc_exec_t,file,getattr audit2allow suggests: #============= xdm_t ============== allow xdm_t sssd_initrc_exec_t:file getattr;
Why would GDM be attempting to read the SSSD init script file?
Do you know what you were doing when all your bugs happened? Did this happen by default?
*** Bug 611506 has been marked as a duplicate of this bug. ***
*** Bug 611505 has been marked as a duplicate of this bug. ***
*** Bug 611504 has been marked as a duplicate of this bug. ***
*** Bug 611503 has been marked as a duplicate of this bug. ***
*** Bug 611502 has been marked as a duplicate of this bug. ***
*** Bug 611501 has been marked as a duplicate of this bug. ***
*** Bug 611500 has been marked as a duplicate of this bug. ***
*** Bug 611499 has been marked as a duplicate of this bug. ***
*** Bug 611497 has been marked as a duplicate of this bug. ***
*** Bug 611496 has been marked as a duplicate of this bug. ***
*** Bug 611494 has been marked as a duplicate of this bug. ***
*** Bug 611493 has been marked as a duplicate of this bug. ***
*** Bug 611492 has been marked as a duplicate of this bug. ***
*** Bug 611491 has been marked as a duplicate of this bug. ***
*** Bug 611489 has been marked as a duplicate of this bug. ***
*** Bug 611488 has been marked as a duplicate of this bug. ***
*** Bug 611485 has been marked as a duplicate of this bug. ***
*** Bug 611508 has been marked as a duplicate of this bug. ***
These occur on login. It happened after not using the laptop for a day. There was no update before this happened.
I just did an update that included a policy update and it appears that the problem is fixed.
Today the problem occured again. It isn't fixed.
Ray do you have any clue, why gdm would be doing a getattr on files in /etc/init.d
This message is a reminder that Fedora 13 is nearing its end of life. Approximately 30 (thirty) days from now Fedora will stop maintaining and issuing updates for Fedora 13. It is Fedora's policy to close all bug reports from releases that are no longer maintained. At that time this bug will be closed as WONTFIX if it remains open with a Fedora 'version' of '13'. Package Maintainer: If you wish for this bug to remain open because you plan to fix it in a currently maintained version, simply change the 'version' to a later Fedora version prior to Fedora 13's end of life. Bug Reporter: Thank you for reporting this issue and we are sorry that we may not be able to fix it before Fedora 13 is end of life. If you would still like to see this bug fixed and are able to reproduce it against a later version of Fedora please change the 'version' of this bug to the applicable version. If you are unable to change the version, please add a comment here and someone will do it for you. Although we aim to fix as many bugs as possible during every release's lifetime, sometimes those efforts are overtaken by events. Often a more recent Fedora release includes newer upstream software that fixes bugs or makes them obsolete. The process we are following is described here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping
This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component.
Fedora 13 changed to end-of-life (EOL) status on 2011-06-25. Fedora 13 is no longer maintained, which means that it will not receive any further security or bug fix updates. As a result we are closing this bug. If you can reproduce this bug against a currently maintained version of Fedora please feel free to reopen this bug against that version. Thank you for reporting this bug and we are sorry it could not be fixed.