gconf alert
Valent Turkovic
valent.turkovic at gmail.com
Sat Mar 22 12:55:08 UTC 2008
On Sat, Mar 22, 2008 at 12:14 PM, Daniel J Walsh <dwalsh at redhat.com> wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Valent Turkovic wrote:
> > On Sat, Mar 22, 2008 at 12:20 AM, Daniel J Walsh <dwalsh at redhat.com> wrote:
> >> -----BEGIN PGP SIGNED MESSAGE-----
> >> Hash: SHA1
> >>
> >>
> >> Valent Turkovic wrote:
> >> > Hi.
> >> >
> >> > I'm seeing lots of these alerts in rawhide.
> >> > Is this "normal" or is it a gnome or selinux issue or is my system problematic?
> >> >
> >> > Valent.
> >> >
> >> >
> >> >
> >> > ------------------------------------------------------------------------
> >> >
> >> > --
> >> > fedora-selinux-list mailing list
> >> > fedora-selinux-list at redhat.com
> >> > https://www.redhat.com/mailman/listinfo/fedora-selinux-list
> >> Well you are logging in as root via XWindows which is not a good idea
> >> and we do not plan to fix the policy for this. Since it is such a bad
> >> idea, and would break any security we have tried to add to SELinux to
> >> eliminate the AVC. You also setup the user to login via user_t?
> >> -----BEGIN PGP SIGNATURE-----
> >> Version: GnuPG v1.4.8 (GNU/Linux)
> >> Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
> >>
> >> iEYEARECAAYFAkfkQtAACgkQrlYvE4MpobMhRACeJ9srkML85WxzUU6DVBtEPMS9
> >> Uw0AoLqLWJUxIzTk79o7Tn4ybDSKRsE8
> >> =z7RQ
> >> -----END PGP SIGNATURE-----
> >>
> >
> >
> > I'm not logging in as root to gnome.
> >
> > Valent
> > .
> >
> Well the AVC says
>
> host=valent.lan type=AVC msg=audit(1206099072.482:443): avc: denied {
> rename } for pid=13738 comm="gconfd-2" name="saved_state.tmp" dev=sda9
> ino=865370 scontext=user_u:user_r:user_t:s0
> tcontext=user_u:object_r:admin_home_t:s0 tclass=file
>
> host=valent.lan type=SYSCALL msg=audit(1206099072.482:443):
> arch=40000003 syscall=38 success=yes exit=0 a0=9f59b20 a1=9f57118 a2=0
> a3=5 items=0 ppid=1 pid=13738 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0
> egid=0 sgid=0 fsgid=0 tty=(none) ses=4 comm="gconfd-2"
> exe="/usr/libexec/gconfd-2" subj=user_u:user_r:user_t:s0 key=(null)
>
>
> admin_home_t is the label of /root
>
> So either you have a labeling problem or you have gconfd-2 trying to
> relabel saved_state.tmp which is labeled the root directory label
> admin_home_t
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.8 (GNU/Linux)
> Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
>
> iEYEARECAAYFAkfk6gAACgkQrlYvE4MpobMAXwCg2YpVaswVCQVI7kSuOUk+CgDN
> JWMAoIHx0BNqxOdbUKGsA1ruGBTlYvin
> =F+6B
> -----END PGP SIGNATURE-----
>
I relabeled my system 2 times in last few days and I'm not running as
gmome as root. I don't know why I'm seeing this alert and that is why
I'm sending you this email.
Valent.
--
http://kernelreloaded.blog385.com/
linux, blog, anime, spirituality, windsurf, wireless
registered as user #367004 with the Linux Counter, http://counter.li.org.
ICQ: 2125241, Skype: valent.turkovic
More information about the fedora-selinux-list
mailing list