Hide Forgot
SELinux is preventing sedispatch from 'sendto' accesses on the unix_dgram_socket /dev/log. ***** Plugin catchall (100. confidence) suggests *************************** If you believe that sedispatch should be allowed sendto access on the log unix_dgram_socket by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep sedispatch /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:audisp_t:s0 Target Context system_u:system_r:initrc_t:s0 Target Objects /dev/log [ unix_dgram_socket ] Source sedispatch Source Path sedispatch Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.9.16-6.fc15 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux localhost.localdomain 2.6.38-1.fc15.x86_64 #1 SMP Tue Mar 15 05:29:00 UTC 2011 x86_64 x86_64 Alert Count 120 First Seen Thu 24 Mar 2011 08:50:44 AM CST Last Seen Thu 24 Mar 2011 08:51:37 AM CST Local ID cf36a7d8-0e79-47c0-9bb7-70daf08bff18 Raw Audit Messages type=AVC msg=audit(1300927897.813:6712): avc: denied { sendto } for pid=880 comm="sedispatch" path="/dev/log" scontext=system_u:system_r:audisp_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=unix_dgram_socket Hash: sedispatch,audisp_t,initrc_t,unix_dgram_socket,sendto audit2allow #============= audisp_t ============== allow audisp_t initrc_t:unix_dgram_socket sendto; audit2allow -R #============= audisp_t ============== allow audisp_t initrc_t:unix_dgram_socket sendto;
*** This bug has been marked as a duplicate of bug 690340 ***