https://bugzilla.redhat.com/show_bug.cgi?id=1887111
--- Comment #1 from W Agtail <crash70(a)ymail.com> ---
sealert -l f48939da-f2cb-40e4-92a1-5170e1d41303
SELinux is preventing dspam from append access on the file system.log.
***** Plugin catchall (100. confidence) suggests **************************
If you believe that dspam should be allowed append access on the system.log
file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'dspam' --raw | audit2allow -M my-dspam
# semodule -X 300 -i my-dspam.pp
Additional Information:
Source Context system_u:system_r:antivirus_t:s0
Target Context system_u:object_r:dspam_var_lib_t:s0
Target Objects system.log [ file ]
Source dspam
Source Path dspam
Port <Unknown>
Host kvm7.home.local
Source RPM Packages
Target RPM Packages
SELinux Policy RPM selinux-policy-targeted-3.14.5-43.fc32.noarch
Local Policy RPM selinux-policy-targeted-3.14.5-43.fc32.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Permissive
Host Name kvm7.home.local
Platform Linux kvm7.home.local 5.8.11-200.fc32.x86_64 #1
SMP Wed Sep 23 13:51:28 UTC 2020 x86_64 x86_64
Alert Count 34
First Seen 2020-10-10 09:31:40 BST
Last Seen 2020-10-10 23:22:04 BST
Local ID f48939da-f2cb-40e4-92a1-5170e1d41303
Raw Audit Messages
type=AVC msg=audit(1602368524.945:78868): avc: denied { append } for
pid=2977396 comm="dspam" name="system.log" dev="dm-8"
ino=12584201
scontext=system_u:system_r:antivirus_t:s0
tcontext=system_u:object_r:dspam_var_lib_t:s0 tclass=file permissive=1
Hash: dspam,antivirus_t,dspam_var_lib_t,file,append
--
You are receiving this mail because:
You are on the CC list for the bug.