Is selinux breaking up syslogd
Bob Kashani
bobk at ocf.berkeley.edu
Sat Jul 23 18:30:38 UTC 2005
On Sat, 2005-07-23 at 19:33 +0200, Tomas Larsson wrote:
> As mentioned before, I cant get syslogd to run properly.
>
> It seems that selinux is blocking syslogd.
>
> type=AVC msg=audit(1122120398.858:801833): avc: denied { read } for
> pid=4595 comm="syslogd" name="syslog.conf" dev=dm-0 ino=653814
> scontext=root:system_r:syslogd_t tcontext=system_u:object_r:etc_runtime_t
> tclass=file
> type=SYSCALL msg=audit(1122120398.858:801833): arch=40000003 syscall=5
> success=no exit=-13 a0=d448c6 a1=0 a2=1b6 a3=9cd1298 items=1 pid=4595
> auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
> comm="syslogd" exe="/sbin/syslogd"
>
> If I understand this correctly selinux is stopping syslogd to read
> syslog.conf.
>
> How do I do to get it to work, there is no reference in the selinux
> man-pages to syslogd.
> With best regards
The file context that I have for /etc/syslog.conf on FC3 & FC4:
[medieval at chaucer etc]$ ls -Z /etc/syslog.conf
-rw-r--r-- root root
system_u:object_r:etc_t /etc/syslog.conf
Have you tried doing a "touch /.autorelabel" and rebooting?
Bob
--
Bob Kashani
http://www.ocf.berkeley.edu/~bobk/garnome
More information about the fedora-selinux-list
mailing list