Hide Forgot
SELinux is preventing /bin/bash from 'read' accesses on the directory /dev/pts. ***** Plugin catchall (100. confidence) suggests *************************** If you believe that bash should be allowed read access on the pts directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep sh /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context unconfined_u:unconfined_r:mock_t:s0-s0:c0.c1023 Target Context unconfined_u:object_r:devpts_t:s0 Target Objects /dev/pts [ dir ] Source sh Source Path /bin/bash Port <Neznámé> Host (removed) Source RPM Packages bash-4.2.8-1.fc15 Target RPM Packages Policy RPM selinux-policy-3.9.16-1.fc15 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 2.6.38-1.fc15.x86_64 #1 SMP Tue Mar 15 05:29:00 UTC 2011 x86_64 x86_64 Alert Count 1 First Seen Pá 18. březen 2011, 16:28:43 CET Last Seen Pá 18. březen 2011, 16:28:43 CET Local ID 7cafebe1-cd0b-42ce-9d31-47992d6f8a9c Raw Audit Messages type=AVC msg=audit(1300462123.341:354): avc: denied { read } for pid=25129 comm="sh" name="/" dev=devpts ino=1 scontext=unconfined_u:unconfined_r:mock_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:devpts_t:s0 tclass=dir type=SYSCALL msg=audit(1300462123.341:354): arch=x86_64 syscall=open success=yes exit=EINTR a0=7ff4849eb516 a1=90800 a2=8 a3=92360 items=0 ppid=25109 pid=25129 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=1 comm=sh exe=/bin/bash subj=unconfined_u:unconfined_r:mock_t:s0-s0:c0.c1023 key=(null) Hash: sh,mock_t,devpts_t,dir,read audit2allow #============= mock_t ============== allow mock_t devpts_t:dir read; audit2allow -R #============= mock_t ============== allow mock_t devpts_t:dir read;