avc denied from mDNSResponder
Richard Hally
rhally at mindspring.com
Sun Jul 11 07:38:56 UTC 2004
Russell Coker wrote:
> On Sat, 10 Jul 2004 17:23, Richard Hally <rhallyx at mindspring.com> wrote:
>
>>When booting in enforcing mode with the latest strict
>>policy(selinux-policy-strict-sources-1.14.1-5)
>>the following avc denied message is produced.
>>
>>Jul 10 03:12:02 new2 network: Bringing up interface eth0: succeeded
>>Jul 10 03:12:04 new2 kernel: audit(1089443524.677:0): avc: denied {
>>name_bind
>>} for pid=2016 exe=/usr/bin/mDNSResponder scontext=user_u:user_r:user_t
>>tcontext=system_u:object_r:dns_port_t tclass=udp_socket
>
>
> What is this /usr/bin/mDNSResponder and where do I find an RPM for it?
>
howl-0.9.5-4 was added to /development within the last two weeks.
> Binding to port 53 is an operation for a daemon, why is it happening in
> user_r:user_t?
>
It probably does not have any policy written for it yet!
Richard Hally
More information about the fedora-selinux-list
mailing list