Hide Forgot
Summary: SELinux is preventing /usr/libexec/polkit-gnome-authentication-agent-1 "read" access on /usr/share/mime/mime.cache. Detailed Description: [SELinux is in permissive mode. This access was not denied.] SELinux denied access requested by polkit-gnome-au. It is not expected that this access is required by polkit-gnome-au and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://docs.fedoraproject.org/selinux-faq-fc5/#id2961385) Please file a bug report. Additional Information: Source Context sysadm_u:sysadm_r:oddjob_mkhomedir_t:s0-s0:c0.c102 3 Target Context sysadm_u:object_r:usr_t:s0 Target Objects /usr/share/mime/mime.cache [ file ] Source polkit-gnome-au Source Path /usr/libexec/polkit-gnome-authentication-agent-1 Port <Unknown> Host (removed) Source RPM Packages polkit-gnome-0.96-1.fc13 Target RPM Packages Policy RPM selinux-policy-3.7.19-69.fc13 Selinux Enabled True Policy Type targeted Enforcing Mode Permissive Plugin Name catchall Host Name (removed) Platform Linux (removed) 2.6.34.7-61.fc13.i686 #1 SMP Tue Oct 19 04:42:47 UTC 2010 i686 i686 Alert Count 2 First Seen Thu 20 Jan 2011 10:53:34 PM MST Last Seen Thu 20 Jan 2011 10:53:34 PM MST Local ID 2f13b74d-f109-4e70-9e85-0b4ef10590d4 Line Numbers Raw Audit Messages node=(removed) type=AVC msg=audit(1295589214.74:26095): avc: denied { read } for pid=1906 comm="polkit-gnome-au" name="mime.cache" dev=dm-0 ino=7467 scontext=sysadm_u:sysadm_r:oddjob_mkhomedir_t:s0-s0:c0.c1023 tcontext=sysadm_u:object_r:usr_t:s0 tclass=file node=(removed) type=AVC msg=audit(1295589214.74:26095): avc: denied { open } for pid=1906 comm="polkit-gnome-au" name="mime.cache" dev=dm-0 ino=7467 scontext=sysadm_u:sysadm_r:oddjob_mkhomedir_t:s0-s0:c0.c1023 tcontext=sysadm_u:object_r:usr_t:s0 tclass=file node=(removed) type=SYSCALL msg=audit(1295589214.74:26095): arch=40000003 syscall=5 success=yes exit=8 a0=9219020 a1=8000 a2=0 a3=9212760 items=0 ppid=1767 pid=1906 auid=500 uid=500 gid=493 euid=500 suid=500 fsuid=500 egid=493 sgid=493 fsgid=493 tty=(none) ses=1 comm="polkit-gnome-au" exe="/usr/libexec/polkit-gnome-authentication-agent-1" subj=sysadm_u:sysadm_r:oddjob_mkhomedir_t:s0-s0:c0.c1023 key=(null) Hash String generated from catchall,polkit-gnome-au,oddjob_mkhomedir_t,usr_t,file,read audit2allow suggests: #============= oddjob_mkhomedir_t ============== allow oddjob_mkhomedir_t usr_t:file { read open };
*** This bug has been marked as a duplicate of bug 671607 ***