Syslogd sending output to devpts

Jose H. REMY Jose.Remy at SECUR.NET
Thu Nov 10 10:08:49 UTC 2005 

I have updated to selinux-policy-targeted-1.27.1-2.11, and still be unable
to send logs to /dev/pts/*
...........audit.log
type=PATH msg=audit(1131616982.431:2085578): item=0 name="/dev/pts/2"
inode=1 de
v=00:09 mode=040755 ouid=0 ogid=0 rdev=00:00
type=SYSCALL msg=audit(1131616982.431:2085578): arch=40000003 syscall=5
success=
no exit=-13 a0=bfa18cda a1=8541 a2=1a4 a3=1 items=1 pid=331 auid=4294967295
uid=
0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="syslogd"
exe="/sbin/sy
slogd"
type=AVC msg=audit(1131616982.431:2085578): avc:  denied  { append } for
pid=33
1 comm="syslogd" name=2 dev=devpts ino=4 scontext=root:system_r:syslogd_t
tconte
xt=root:object_r:devpts_t tclass=chr_file


Jose H. REMY

Network administrator


 -----Original Message-----
From: 	Daniel J Walsh [mailto:dwalsh at redhat.com] 
Sent:	Monday, November 07, 2005 18:35
To:	Jose H. REMY
Cc:	'fedora-selinux-list at redhat.com'
Subject:	Re: Syslogd sending output to devpts

Jose H. REMY wrote:
> Hi,
>
> Since I've installed SElinux  (fedora-release-4-2
> selinux-policy-targeted-1.23.16-6), configured with targeted policy
> SELinux status:                 enabledSELinuxfs mount:
> /selinuxCurrent mode:                   enforcingMode from config file:
> enforcingPolicy version:                 19Policy from config file:
> targeted
> I've trouble sending outputs of syslog toward a /dev/pts/* window
>
> My devpts context : crw--w----  root     tty      root:object_r:devpts_t
> My syslogd context : user_u:system_r:syslogd_t        1872 ?
00:00:00
> syslogdMy syslog.conf context: -rw-r--r--  root     root
> system_u:object_r:etc_t /etc/syslog.conf
>
> Thank you for help and explanation (why I don't always have an "avc"
denied
> message in message log?)
>   
They are being dontaudited.  Please update to the latest policy for 
FC4.  This should be allowed.
> Thanks,
>
> Jose H. REMY
>
> Network administrator
> SECUR.NET
>
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>   


-- 





-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
-.-.
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.

ATTENTION: This message was automatically controled and filtered. S/MIME
will not work, use file encryption/signing instead.
Ce message INTERNET a ete controle et filtre par SECUR.NET (filtres: Anomy
HTML_cleaner, HTML_parser, MIME_tools); (antivirus: File_Scan, CLAMAV,
MacAFEE)
postmaster at localhost





-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
-.-.
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.

More information about the fedora-selinux-list mailing list