Hi Daniel,
Thanks for your reply, looks like that may be what I need. :)
I assume again this wont upset teh running of the machine when this is
performed?
Also is theis change persisteant after reboots?
Is there a way for making a new policy to allow the required actions
instead of removing the dontaudit all together?
many thanks
On 17 April 2010 00:45, Daniel J Walsh <dwalsh(a)redhat.com> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The problem you are seeing is dontaudit rules. snmp is not allowed to
read content within the users home dirs. If you want to turn off
dontaudit rules you can by executing
semodule -DB
semodule -B
Will turn the rules back on.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora -
http://enigmail.mozdev.org/
iEYEARECAAYFAkvIW+cACgkQrlYvE4MpobOmqACgvgMQ6oh6XFKuDhzTDIDftRFL
xVkAoIbYMk88+HHHMxcJfkc+R/U2aVf7
=x7Ni
-----END PGP SIGNATURE-----