Can I allow console_type_t to access pppd_t?
chenh
chenhuan126 at 126.com
Mon Sep 28 01:50:12 UTC 2009
Everytime I use adsl connection, AVC alerts: "SELinux is preventing consoletype (consoletype_t) "read write" pppd_t. " I typed "audit2allow -a" and saw:
#============= alsa_t ==============
allow alsa_t file_t:file read;
#============= consoletype_t ==============
allow consoletype_t file_t:file read;
allow consoletype_t pppd_t:packet_socket { read write };
#============= dmesg_t ==============
allow dmesg_t file_t:file read;
#============= hwclock_t ==============
allow hwclock_t file_t:file read;
#============= ifconfig_t ==============
allow ifconfig_t file_t:file read;
#============= mount_t ==============
allow mount_t file_t:file unlink;
#============= setroubleshootd_t ==============
allow setroubleshootd_t locate_var_lib_t:file read;
There're two rule about consoletype above. Is it safe to add them using audit2allow? Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20090928/6d82774a/attachment.htm>
More information about the fedora-selinux-list
mailing list