SELinux is preventing sendmail from using the 'execmem' accesses on a process. ***** Plugin catchall (100. confidence) suggests *************************** If you believe that sendmail should be allowed execmem access on processes labeled sendmail_t by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep sendmail /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:sendmail_t:s0 Target Context system_u:system_r:sendmail_t:s0 Target Objects Unknown [ process ] Source sendmail Source Path sendmail Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.9.7-20.fc14 Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Host Name (removed) Platform Linux (removed) 2.6.35.10-74.fc14.x86_64 #1 SMP Thu Dec 23 16:04:50 UTC 2010 x86_64 x86_64 Alert Count 1 First Seen Wed 19 Jan 2011 09:10:26 PM MSK Last Seen Wed 19 Jan 2011 09:10:26 PM MSK Local ID 039ccbd7-d56c-4772-80b4-8176e772a207 Raw Audit Messages type=AVC msg=audit(1295460626.262:88): avc: denied { execmem } for pid=29593 comm="sendmail" scontext=system_u:system_r:sendmail_t:s0 tcontext=system_u:system_r:sendmail_t:s0 tclass=process sendmail,sendmail_t,sendmail_t,process,execmem #============= sendmail_t ============== allow sendmail_t self:process execmem;
*** This bug has been marked as a duplicate of bug 671002 ***