fedora-selinux-list Digest, Vol 39, Issue 21

Dineshwar Kumar kumardineshwar at gmail.com
Wed May 23 04:43:00 UTC 2007


Hi,


I am new to the selinux policy can any one tell me what is this. i am using
snmp to read the nfs mounted dir "content_directory". than i got this entry
in my log.



05.22.2007 04:46:53 EDT <kern.notice> 172.25.33.140 kernel: audit(
1179391601.031:1144058): avc:  denied  { search } for  pid=19687
comm="snmpd" name="content_directory" dev=0:15 ino=14609954
scontext=system_u:system_r:snmpd_t tcontext=root:object_r:nfs_t tclass=dir




on the parent dir the selinux policy is this


[root at INP-AS-11 /]# ls -Z
/usr/local/PServer41SP2/server/nodes/momentum/archives/public_html/
drwxrwxrwx  supportp supportp user_u:object_r:usr_t            admin
drwxrwxrwx  supportp supportp user_u:object_r:usr_t            cliks
drwxrwxrwx  root     root                                      cliksdmrroot
-rw-rw-r--  supportp supportp user_u:object_r:usr_t            cliks.tgz
drwxrwxrwx  supportp supportp user_u:object_r:usr_t            css
-rwxrwxrwx  supportp supportp user_u:object_r:usr_t            index.jsp
drwxrwxrwx  supportp supportp user_u:object_r:usr_t
pramati_admin_help
drwxrwxrwx  supportp supportp user_u:object_r:usr_t            WEB-INF




[root at INP-AS-11 /]# ls -Z
/usr/local/PServer41SP2/server/nodes/momentum/archives/public_html/cliksdmrroot/
drwxrwxrwx  nfsnobod nfsnobod
content_directory
drwxrwxrwx  nfsnobod nfsnobod
dfxmldirectory
drwxrwxrwx  nfsnobod nfsnobod                                  dmrnormal
drwxrwxrwx  nfsnobod nfsnobod                                  exportarea
drwxrwxrwx  nfsnobod nfsnobod                                  kmexportarea
drwxrwxrwx  nfsnobod nfsnobod                                  kmnwpath
drwxrwxrwx  nfsnobod nfsnobod
kmtemprepository
drwxrwxrwx  nfsnobod nfsnobod
kmxmlrepository
drwxrwxrwx  nfsnobod nfsnobod                                  lmsdirectory
-rwxrwxrwx  nfsnobod nfsnobod
log4j.properties
drwxrwxrwx  nfsnobod nfsnobod                                  tedirectory
drwxrwxrwx  nfsnobod nfsnobod                                  umdirectory
drwxrwxrwx  nfsnobod nfsnobod                                  WEB-INF
drwxrwxrwx  nfsnobod nfsnobod                                  wsdirectory



With Thanks,
Dinesh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20070523/04cc8c62/attachment.htm>


More information about the fedora-selinux-list mailing list