Cisco VPN client does not work on FC4
Paul Howarth
paul at city-fan.org
Fri May 12 19:49:20 UTC 2006
On Fri, 2006-05-12 at 12:13 -0700, yukku yukkoooooo wrote:
> Paul Howarth wrote :
> > Look in /var/log/messages
> > and/or /var/log/audit/audit.log for "avc: denied" after you have run
> > the client in permissive mode (setenforce 0) and see what crops up.
> Yes I got such a message in /var/log/audit/audit.log after I disabled
> SELnx and ran vpnclient --
> type=AVC msg=audit(1147460693.437:11955217): avc: denied { execmod }
> for pid=4086 comm="vpnclient" name=libvpnapi.so dev=hda3 ino=32474
> scontext=user_u:system_r:unconfined_t tcontext=root:object_r:usr_t
> tclass=file
>
> So is there a way out of this ?
The memory checks are present in FC4 but disabled by default. It appears
that they have somehow been enabled on your system. This should fix it:
# setsebool -P allow_execmod 1
Paul.
More information about the fedora-list
mailing list