Bug 908376 - AVC for logwatch
Summary: AVC for logwatch
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted
Version: 18
Hardware: x86_64
OS: Linux
unspecified
high
Target Milestone: ---
Assignee: Miroslav Grepl
QA Contact: Ben Levenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-02-06 14:44 UTC by David Highley
Modified: 2013-02-08 16:38 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2013-02-08 16:38:24 UTC
Type: Bug
Embargoed:


Attachments (Terms of Use)
extraction of audit log avcs (25.84 KB, application/x-bzip2)
2013-02-06 14:44 UTC, David Highley
no flags Details

Description David Highley 2013-02-06 14:44:59 UTC
Created attachment 693963 [details]
extraction of audit log avcs

Description of problem:
Slew of new avcs for logwatch.

Version-Release number of selected component (if applicable):
selinux-policy-targeted-3.11.1-73.fc18.noarch
logwatch-7.4.0-23.20130102svn127.fc18.noarch

How reproducible:


Steps to Reproduce:
1.
2.
3.
  
Actual results:


Expected results:


Additional info:
Attaching audit log information.

Comment 1 David Highley 2013-02-07 00:40:21 UTC
Noticed that audit2allow suggested turning on the sebool authlogin_nsswitch_use_ldap but we do not use ldap and it is not in the nsswitch.conf file.

Comment 2 Miroslav Grepl 2013-02-07 07:58:08 UTC
This is a problem with mdadm and logwatch. We have fixes in the latest builds which have been submitted as updates.

# yum update selinux-policy-targeted --enablerepo-updates-testing

Comment 3 Miroslav Grepl 2013-02-07 07:59:16 UTC
If you don't get the update, please use builds

http://koji.fedoraproject.org/koji/buildinfo?buildID=382238

Comment 4 David Highley 2013-02-08 14:32:17 UTC
Installed the update from koji and it seems to be fixed now, selinux-policy-targeted-3.11.1-76.fc18.noarch.


Note You need to log in before you can comment on or make changes to this bug.