Need new secret sauce
David Highley
dhighley at highley-recommended.com
Thu May 6 13:32:21 UTC 2010
Did the usual dance after selinux policy seemed to get wiped out. Does
not appear to be working. I also did an semodule -r mysshdfilter just to
make sure there was not some thing fouled up.
grep sshdfilter /var/log/audit/audit.log | tail -2 | audit2allow -M
mysshdfilter
semodule -i mysshdfilter.pp
type=SYSCALL msg=audit(1273152205.754:30341): arch=c000003e syscall=2
success=no exit=-13 a0=1f16088 a1=241 a2=1b6 a3=7f26f5e60920 items=0
ppid=24925 pid=24926 auid=1000 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 tty=(none) ses=731 comm="sshdfilter" exe="/usr/bin/perl"
subj=unconfined_u:system_r:sshd_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1273152205.754:30341): avc: denied { write } for
pid=24926 comm="sshdfilter" name="sshdfilter.pid.SSHD" dev=dm-0 ino=539
scontext=unconfined_u:system_r:sshd_t:s0-s0:c0.c1023
tcontext=system_u:object_r:var_run_t:s0 tclass=file
More information about the selinux
mailing list