Issue with selinux and swapfiles in FC5?
Daniel J Walsh
dwalsh at redhat.com
Thu Feb 16 15:25:23 UTC 2006
Fabio Mollify wrote:
> Hi. I found this line in my logs:
>
> audit(1140033999.212:6): avc: denied { write } for pid=2171
> comm="swapon" name="swapfile" dev=sda2 ino=67052
> scontext=system_u:system_r:fsadm_t:s0
> tcontext=system_u:object_r:default_t:s0 tclass=file
>
> I'm just experimenting with selinux, so I set it up in permissive mode
> and the swap was activated.
>
> Is there a way to get rid of it? (or can it be considered harmless?)
>
> Thanks in advance.
> Fabio
>
>
chcon -t swapfile_t swapfile
should fix the problem. (swapfile_t needs to be made a customizable
type. Also needs a man page)
More information about the fedora-test-list
mailing list