I have updated to selinux-policy-targeted-1.27.1-2.11, and still be unable
to send logs to /dev/pts/*
...........audit.log
type=PATH msg=audit(1131616982.431:2085578): item=0 name="/dev/pts/2"
inode=1 de
v=00:09 mode=040755 ouid=0 ogid=0 rdev=00:00
type=SYSCALL msg=audit(1131616982.431:2085578): arch=40000003 syscall=5
success=
no exit=-13 a0=bfa18cda a1=8541 a2=1a4 a3=1 items=1 pid=331 auid=4294967295
uid=
0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm="syslogd"
exe="/sbin/sy
slogd"
type=AVC msg=audit(1131616982.431:2085578): avc: denied { append } for
pid=33
1 comm="syslogd" name=2 dev=devpts ino=4 scontext=root:system_r:syslogd_t
tconte
xt=root:object_r:devpts_t tclass=chr_file
Jose H. REMY
Network administrator
-----Original Message-----
From: Daniel J Walsh [mailto:dwalsh@redhat.com]
Sent: Monday, November 07, 2005 18:35
To: Jose H. REMY
Cc: 'fedora-selinux-list(a)redhat.com'
Subject: Re: Syslogd sending output to devpts
Jose H. REMY wrote:
Hi,
Since I've installed SElinux (fedora-release-4-2
selinux-policy-targeted-1.23.16-6), configured with targeted policy
SELinux status: enabledSELinuxfs mount:
/selinuxCurrent mode: enforcingMode from config file:
enforcingPolicy version: 19Policy from config file:
targeted
I've trouble sending outputs of syslog toward a /dev/pts/* window
My devpts context : crw--w---- root tty root:object_r:devpts_t
My syslogd context : user_u:system_r:syslogd_t 1872 ?
00:00:00
syslogdMy syslog.conf context: -rw-r--r-- root root
system_u:object_r:etc_t /etc/syslog.conf
Thank you for help and explanation (why I don't always have an "avc"
denied
message in message log?)
They are being dontaudited. Please update to the latest policy for
FC4. This should be allowed.
Thanks,
Jose H. REMY
Network administrator
SECUR.NET
--
fedora-selinux-list mailing list
fedora-selinux-list(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
--
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
-.-.
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
ATTENTION: This message was automatically controled and filtered. S/MIME
will not work, use file encryption/signing instead.
Ce message INTERNET a ete controle et filtre par
SECUR.NET (filtres: Anomy
HTML_cleaner, HTML_parser, MIME_tools); (antivirus: File_Scan, CLAMAV,
MacAFEE)
postmaster@localhost
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
-.-.
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.