abrt version: 2.0.5
executable:     /usr/bin/python
hashmarkername: setroubleshoot
kernel:         2.6.32-209.el6.x86_64
reason:         SELinux is preventing /usr/bin/passwd from 'write' accesses on the file /out.txt.
time:           Mon Oct 31 10:24:54 2011

description:
:SELinux is preventing /usr/bin/passwd from 'write' accesses on the file /out.txt.
:
:*****  Plugin leaks (50.5 confidence) suggests  ******************************
:
:If you want to ignore passwd trying to write access the out.txt file, because you believe it should not need this access.
:Then you should report this as a bug.  
:You can generate a local policy module to dontaudit this access.
:Do
:# grep /usr/bin/passwd /var/log/audit/audit.log | audit2allow -D -M mypol
:# semodule -i mypol.pp
:
:*****  Plugin catchall (50.5 confidence) suggests  ***************************
:
:If you believe that passwd should be allowed write access on the out.txt file by default.
:Then you should report this as a bug.
:You can generate a local policy module to allow this access.
:Do
:allow this access for now by executing:
:# grep passwd /var/log/audit/audit.log | audit2allow -M mypol
:# semodule -i mypol.pp
:
:Additional Information:
:Source Context                unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023
:Target Context                unconfined_u:object_r:etc_runtime_t:s0
:Target Objects                /out.txt [ file ]
:Source                        passwd
:Source Path                   /usr/bin/passwd
:Port                          <Unknown>
:Host                          (removed)
:Source RPM Packages           passwd-0.77-4.el6
:Target RPM Packages           
:Policy RPM                    selinux-policy-3.7.19-117.el6
:Selinux Enabled               True
:Policy Type                   targeted
:Enforcing Mode                Enforcing
:Host Name                     (removed)
:Platform                      Linux dhcp-30-102.brq.redhat.com
:                              2.6.32-209.el6.x86_64 #1 SMP Wed Oct 12 03:54:10
:                              EDT 2011 x86_64 x86_64
:Alert Count                   1
:First Seen                    Mon 31 Oct 2011 10:22:29 AM CET
:Last Seen                     Mon 31 Oct 2011 10:22:29 AM CET
:Local ID                      c0c4816b-6f15-4038-b2d0-420a8efb214b
:
:Raw Audit Messages
:type=AVC msg=audit(1320052949.586:356): avc:  denied  { write } for  pid=17788 comm="passwd" path="/out.txt" dev=sda4 ino=14 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:etc_runtime_t:s0 tclass=file
:
:
:type=AVC msg=audit(1320052949.586:356): avc:  denied  { write } for  pid=17788 comm="passwd" path="/out.txt" dev=sda4 ino=14 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:etc_runtime_t:s0 tclass=file
:
:
:type=SYSCALL msg=audit(1320052949.586:356): arch=x86_64 syscall=execve success=yes exit=0 a0=24853b0 a1=248f270 a2=2493f70 a3=18 items=0 ppid=17757 pid=17788 auid=501 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1 ses=1 comm=passwd exe=/usr/bin/passwd subj=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 key=(null)
:
:Hash: passwd,passwd_t,etc_runtime_t,file,write
:
:audit2allow
:
:#============= passwd_t ==============
:allow passwd_t etc_runtime_t:file write;
:
:audit2allow -R
:
:#============= passwd_t ==============
:allow passwd_t etc_runtime_t:file write;
: