SELinux is preventing /usr/sbin/sendmail.sendmail from 'read' accesses on the directorio /home/veronica/Docs. ***** Plugin leaks (50.5 confidence) suggests ****************************** If you want to ignore sendmail.sendmail trying to read access the Docs directory, because you believe it should not need this access. Then you should report this as a bug. You can generate a local policy module to dontaudit this access. Do # grep /usr/sbin/sendmail.sendmail /var/log/audit/audit.log | audit2allow -D -M mypol # semodule -i mypol.pp ***** Plugin catchall (50.5 confidence) suggests *************************** If you believe that sendmail.sendmail should be allowed read access on the Docs directory by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep newaliases /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context unconfined_u:system_r:system_mail_t:s0-s0:c0.c1023 Target Context unconfined_u:object_r:user_home_t:s0 Target Objects /home/veronica/Docs [ dir ] Source newaliases Source Path /usr/sbin/sendmail.sendmail Port <Desconocido> Host (removed) Source RPM Packages sendmail-8.14.5-2.fc15.2 Target RPM Packages Policy RPM selinux-policy-3.9.16-50.fc15 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 2.6.41.10-3.fc15.x86_64 #1 SMP Mon Jan 23 15:46:37 UTC 2012 x86_64 x86_64 Alert Count 1 First Seen jue 02 feb 2012 11:55:20 CLST Last Seen jue 02 feb 2012 11:55:20 CLST Local ID dec9412d-69e4-4e8a-8390-5932745adf55 Raw Audit Messages type=AVC msg=audit(1328194520.714:76): avc: denied { read } for pid=9271 comm="newaliases" path="/home/veronica/Docs" dev=sda5 ino=1537125 scontext=unconfined_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=dir type=AVC msg=audit(1328194520.714:76): avc: denied { read } for pid=9271 comm="newaliases" path="/home/veronica/Docs" dev=sda5 ino=1537125 scontext=unconfined_u:system_r:system_mail_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=dir type=SYSCALL msg=audit(1328194520.714:76): arch=x86_64 syscall=execve success=yes exit=0 a0=1299c60 a1=1299d50 a2=1298d70 a3=0 items=0 ppid=9270 pid=9271 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=485 sgid=485 fsgid=485 tty=pts1 ses=1 comm=newaliases exe=/usr/sbin/sendmail.sendmail subj=unconfined_u:system_r:system_mail_t:s0-s0:c0.c1023 key=(null) Hash: newaliases,system_mail_t,user_home_t,dir,read audit2allow #============= system_mail_t ============== allow system_mail_t user_home_t:dir read; audit2allow -R #============= system_mail_t ============== allow system_mail_t user_home_t:dir read;
*** This bug has been marked as a duplicate of bug 785501 ***