AVC Denied Dhcp and Iptables.
piotreek
piotreek23 at gmail.com
Mon Jun 11 18:03:27 UTC 2007
2007/6/11, piotreek <piotreek23 at gmail.com>:
>
> 2007/6/11, Daniel J Walsh <dwalsh at redhat.com>:
> >
> > piotreek wrote:
> > > Hi guys i found some strange messages in my logs. It seams that
> > > selinux is blocking a dhcp an Iptables.
> > > I found similar post on group about DHCP but my messages are
> > > different.I am using FC7 latest policy update didn't resolve the
> > problem.
> > > P.S I am using firestater as my firewall.
> > I believe you will need to write custom policy to make this work. You
> > can simply add these rules using audit2allow.
> >
> > # grep dhcpc /var/log/audit/audit.log | audit2allow -M mydhcpc
> >
> > # semodule -i mydhcpc.pp
> >
> > Having dhcpc allowed to turn on/off firewall rules is of debatable
> > security risk.
>
>
> THX but i found what causing problem. Firestarter was causing this
> messages. After uninstall i i have writ-ed my own Iptables script. And
> strange messages disappeared.
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20070611/9b7468de/attachment.htm>
More information about the fedora-selinux-list
mailing list