/proc/$PID/environ and /proc/$PID/cmdline
Tom London
selinux at gmail.com
Sun Sep 17 01:43:37 UTC 2006
On 9/16/06, Steve Grubb <sgrubb at redhat.com> wrote:
> On Saturday 16 September 2006 17:12, Dawid Gajownik wrote:
> > One more thing: I noticed that SELinux blocks access [1] to some files
> > in /proc directory. Some utilities does not know how to handle this
> > situation.
>
> Do you have AVC messages? We want 'em if you got 'em.
>
> -Steve
>
On 9/16/06, Steve Grubb <sgrubb at redhat.com> wrote:
> On Saturday 16 September 2006 17:12, Dawid Gajownik wrote:
> > One more thing: I noticed that SELinux blocks access [1] to some files
> > in /proc directory. Some utilities does not know how to handle this
> > situation.
>
> Do you have AVC messages? We want 'em if you got 'em.
>
> -Steve
Reasonably 'complete' audit file attached. (ignore the rawip_socket
and setroubleshoot AVCs).
Audit2allow reports:
allow NetworkManager_t cupsd_t:dir search;
allow setrans_t crond_t:dir search;
allow setrans_t cupsd_t:dir search;
allow setrans_t udev_t:dir search;
allow setrans_t xdm_t:dir search;
tom
--
Tom London
-------------- next part --------------
A non-text attachment was scrubbed...
Name: log.tar.gz
Type: application/x-gzip
Size: 3575 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/test/attachments/20060916/6e920d8f/attachment.gz
More information about the test
mailing list