dhcpd targeted policy
Daniel J Walsh
dwalsh at redhat.com
Wed Jan 19 15:17:59 UTC 2005
Rogelio J. Baucells wrote:
> Hi,
>
> I am running a FC3 computer with the latest targeted policy
> (selinux-policy-targeted-1.17.30-2.68) and I am getting the following
> messages at the time dhcpd starts:
>
> -----------------------------------------------------------------
> audit(1105547723.050:0): avc: denied { net_admin } for pid=6247
> exe=/usr/sbin/dhcpd capability=12 scontext=root:system_r:dhcpd_t
> tcontext=root:system_r:dhcpd_t tclass=capability
>
> audit(1105547723.244:0): avc: denied { read } for pid=6247
> exe=/usr/sbin/dhcpd name=cacert.org.pem dev=hdc2 ino=230129
> scontext=root:system_r:dhcpd_t tcontext=system_u:object_r:usr_t
> tclass=file
> -----------------------------------------------------------------
>
> I looked at the configuration file (dhcpd.conf) and I do not see any
> place where I am referencing the cacert.org cert file. I use that file
> for other services and it is located at (/usr/share/ssl/certs).
>
> Is there any information on how to resolve this errors?
>
> Thanks
>
> RJB
>
selinux-policy-targeted-1.17.30-2.72 should have a fix for this
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> http://www.redhat.com/mailman/listinfo/fedora-selinux-list
More information about the fedora-selinux-list
mailing list