SELinux does not like fail2ban
Frank Murphy
frankly3d at fedoraproject.org
Mon Jan 5 08:11:38 UTC 2009
John Aldrich wrote:
> Why has no one fixed selinux to ignore fail2ban? It's been reported as far
> back as Fedora 8 that it's a problem. The first instance I found was as
> follows: https://bugzilla.redhat.com/show_bug.cgi?id=463410
>
> That was closed because F8 was nearing EOL.
>
> Surely someone else is running fail2ban and newer versions of Fedora... Why
> doesn't someone fix it? I'll admit, I'm not a programmer or a "guru" of
> linux. I just like to run it as my personal desktop. Unfortunately, it's
> stuff like this which causes all sorts of headaches.
>
> I've re-reported it as occurring in F10. Hopefully someone will fix it this
> time and put out an update to one of the things that is causing the
> problem, either fail2ban or selinux!
>
I was the original reporter, and I still use fail2ban with F10.
You will remove most of the avc's if you switch to use polling.
That was what worked for me, having done some research on it.
Frank
More information about the fedora-list
mailing list