[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: rsyncd can't open log file, but there are no avc messages

From: John Dennis <jdennis redhat com>
To: Johnny Tan <linuxweb gmail com>
Cc: fedora-selinux-list redhat com
Subject: Re: rsyncd can't open log file, but there are no avc messages
Date: Tue, 24 Jun 2008 12:21:36 -0400

Johnny Tan wrote:

Paul Howarth wrote:
Turn off the dontaudit rules:
# semodule -DB
You should then see the AVCs and be able to generate the policymodule you need.
You can then turn back on the dontaduit rules:
# semodule -B
I don't have dontaudit turned on to begin with. As I mentioned, I *do*see AVCs for other selinux problems.

I think you're misunderstanding what dontaudit does. There are specificpolicy rules which have a dontaudit flag associated with them which sayseven if you are auditing don't log this particular denial. What has beensuggested is you disable those donaudit flags so you see ALL thedenials, not just those which do not currently have the dontaudit flagset on them, which is your current situation.


--
John Dennis <jdennis redhat com>

Follow-Ups:
- Re: rsyncd can't open log file, but there are no avc messages
  - From: Johnny Tan

References:
- rsyncd can't open log file, but there are no avc messages
  - From: Johnny Tan
- Re: rsyncd can't open log file, but there are no avc messages
  - From: Paul Howarth
- Re: rsyncd can't open log file, but there are no avc messages
  - From: Johnny Tan

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]