On Mon, 2006-05-29 at 15:58 +0200, dragoran wrote:
I found tons of such errors in my logs:
audit(1148908532.047:300): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:301): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:302): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:303): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:304): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:305): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:306): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:307): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:308): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:309): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:310): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:311): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:312): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
audit(1148908532.047:313): avc: denied { create } for pid=3924
comm="webalizer" scontext=system_u:system_r:webalizer_t:s0
tcontext=system_u:system_r:webalizer_t:s0 tclass=netlink_route_socket
whats wrong here?
known bug or new one?
should I fill it in bugzilla?
I am using selinux-policy-targeted-2.2.40-1.fc5 on FC5 x86_64.
Known issue, already fixed in selinux-policy-2.2.42-3 onwards, which is
currently in rawhide. I'm sure a fix for FC5 will appear eventually,
though this one seems harmless enough apart from filling up logs.
Paul.