dhcpd with selinux-policy-targeted-1.17.30-3.9 in FC3
Alex Charrett
fedora at transposed.org
Mon Jun 27 11:15:43 UTC 2005
On Fri, 24 Jun 2005, Ivan Gyurdiev wrote:
>> audit(1119637866.872:0): avc: denied { name_bind } for pid=3842
>> exe=/usr/sbin/dhcpd src=67 scontext=root:system_r:dhcpd_t
>> tcontext=system_u:object_r:reserved_port_t tclass=udp_socket
>
> This was fixed in rawhide strict, and possibly targeted,
> but I guess the fix hasn't been pushed to updates.
Hi,
This morning I've updated to the newly released
selinux-policy-targeted-1.17.30-3.13. This seems to have resolved the
above error, but now I'm getting denied acess to the leases file:
audit(1119870654.402:0): avc: denied { read } for pid=3242
exe=/usr/sbin/dhcpd name=dhcpd.leases dev=md1 ino=476194
scontext=root:system_r:dhcpd_t tcontext=system_u:object_r:file_t
tclass=file
The line refering to dhcp.leases in
/etc/selinux/targeted/contexts/files/file_contexts looks like it should
work ok:
/var/lib/dhcp(3)?/dhcpd\.leases.* -- system_u:object_r:dhcpd_state_t
Any more ideas?
Cheers,
Alex.
More information about the fedora-selinux-list
mailing list