Created attachment 622671 [details] audit2allow created .te file Description of problem: Munin bind9 plugin is prevented to save state in /var/lib/munin/plugin-state by selinux. Version-Release number of selected component (if applicable): 2.0.6-2 How reproducible: Always. Steps to Reproduce: 1. yum install munin-node 2. ln -s /usr/share/munin/plugins/bind9 /etc/munin/plugins/bind9 3. service munin-node restart Actual results: # tail /var/log/munin/munin-node.log Error output from bind9: Cannot open state file at /etc/munin/plugins/bind9 line 66. Expected results: No error reported by munin-node. Additional info, installed munin and selinux packages: munin-common-2.0.6-2.el6.noarch munin-node-2.0.6-2.el6.noarch libselinux-utils-2.0.94-5.3.el6.i686 selinux-policy-targeted-3.7.19-155.el6_3.4.noarch libselinux-python-2.0.94-5.3.el6.i686 libselinux-2.0.94-5.3.el6.i686 selinux-policy-3.7.19-155.el6_3.4.noarch I'm attaching a TE file created by audit2allow which seems to fix the issue. As I'm total noob to selinux, I don't know if I should have done something else, because other state files are created okay, only bind9 was denied.
Can you verify using munin-2.0.19-1.el6 and selinux-policy-targeted-3.7.19-231.el6.noarch (or newer) ? This may have been resolved long ago, just need to confirm.
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days