Root not allowed to use procmail??????
Robert Nichols
rnicholsNOSPAM at comcast.net
Sun Apr 4 17:48:35 UTC 2010
Summary:
SELinux is preventing /usr/bin/procmail "read" access on /root/.procmailrc.
Additional Information:
Source Context system_u:system_r:procmail_t:s0
Target Context unconfined_u:object_r:admin_home_t:s0
Target Objects /root/.procmailrc [ file ]
Source procmail
Source Path /usr/bin/procmail
Port <Unknown>
Host omega-3a.local
Source RPM Packages procmail-3.22-25.fc12
Target RPM Packages
Policy RPM selinux-policy-3.6.32-106.fc12
Selinux Enabled True
Policy Type targeted
Enforcing Mode Permissive
Plugin Name catchall
Host Name omega-3a.local
Platform Linux omega-3a.local 2.6.32.10-90.fc12.x86_64 #1
SMP Tue Mar 23 09:47:08 UTC 2010 x86_64 x86_64
Alert Count 2
First Seen Sun 04 Apr 2010 12:40:06 PM CDT
Last Seen Sun 04 Apr 2010 12:40:06 PM CDT
Local ID 3c358dab-c665-4cd2-83e1-f53bde028ed6
Line Numbers
Raw Audit Messages
node=omega-3a.local type=AVC msg=audit(1270402806.932:37129): avc: denied {
read } for pid=13981 comm="procmail" name=".procmailrc" dev=sda2 ino=838
scontext=system_u:system_r:procmail_t:s0
tcontext=unconfined_u:object_r:admin_home_t:s0 tclass=file
node=omega-3a.local type=AVC msg=audit(1270402806.932:37129): avc: denied {
open } for pid=13981 comm="procmail" name=".procmailrc" dev=sda2 ino=838
scontext=system_u:system_r:procmail_t:s0
tcontext=unconfined_u:object_r:admin_home_t:s0 tclass=file
node=omega-3a.local type=SYSCALL msg=audit(1270402806.932:37129): arch=c000003e
syscall=2 success=yes exit=4 a0=23ef320 a1=0 a2=0 a3=3a358800f0 items=0
ppid=13980 pid=13981 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="procmail" exe="/usr/bin/procmail"
subj=system_u:system_r:procmail_t:s0 key=(null)
Summary:
SELinux is preventing /usr/bin/procmail "open" access on
/root/mail/procmail.log.
Additional Information:
Source Context system_u:system_r:procmail_t:s0
Target Context system_u:object_r:admin_home_t:s0
Target Objects /root/mail/procmail.log [ file ]
Source procmail
Source Path /usr/bin/procmail
Port <Unknown>
Host omega-3a.local
Source RPM Packages procmail-3.22-25.fc12
Target RPM Packages
Policy RPM selinux-policy-3.6.32-106.fc12
Selinux Enabled True
Policy Type targeted
Enforcing Mode Permissive
Plugin Name catchall
Host Name omega-3a.local
Platform Linux omega-3a.local 2.6.32.10-90.fc12.x86_64 #1
SMP Tue Mar 23 09:47:08 UTC 2010 x86_64 x86_64
Alert Count 1
First Seen Sun 04 Apr 2010 12:40:06 PM CDT
Last Seen Sun 04 Apr 2010 12:40:06 PM CDT
Local ID b8607748-23c6-4ca1-a82f-2ad2ee1c5ac6
Line Numbers
Raw Audit Messages
node=omega-3a.local type=AVC msg=audit(1270402806.966:37130): avc: denied {
open } for pid=13981 comm="procmail" name="procmail.log" dev=sda2 ino=27007
scontext=system_u:system_r:procmail_t:s0
tcontext=system_u:object_r:admin_home_t:s0 tclass=file
node=omega-3a.local type=SYSCALL msg=audit(1270402806.966:37130): arch=c000003e
syscall=2 success=yes exit=6 a0=23f1200 a1=441 a2=1b7 a3=28 items=0 ppid=13980
pid=13981 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=(none) ses=4294967295 comm="procmail" exe="/usr/bin/procmail"
subj=system_u:system_r:procmail_t:s0 key=(null)
--
Bob Nichols "NOSPAM" is really part of my email address.
Do NOT delete it.
More information about the selinux
mailing list