acv denied from screensaver

Richard Hally rhally at mindspring.com
Mon Jul 12 21:24:43 UTC 2004


Daniel J Walsh wrote:
> Richard Hally wrote:
> 
>> The messages below occured while booting with the latest strict policy 
>> in enforcing mode. One of the things that  is not working is the 
>> screensaver. The first message indicates that the problem with the 
>> screensaver may be related to context of files in /tmp created by xdm.
>>
>>
>> Jul 10 03:13:22 new2 kernel: audit(1089443602.916:0): avc:  denied  { 
>> search } for  pid=3288 exe=/usr/X11R6/bin/xscreensaver name=.X11-unix 
>> dev=hda2 ino=1840550 scontext=richard:staff_r:staff_screensaver_t 
>> tcontext=system_u:object_r:xdm_tmp_t tclass=dir
>>
>> The additional messages below may or may not be related.
>>
>> Jul 10 03:13:24 new2 kernel: audit(1089443604.337:0): avc:  denied  { 
>> create } for  pid=3161 exe=/usr/bin/gnome-session 
>> scontext=richard:staff_r:staff_t tcontext=richard:staff_r:staff_t 
>> tclass=netlink_route_socket
> 
> 
> These should have been dontaudited.  Are you running with enableaudit?
> 
There was a time when I did 'enableaudit' to get the avc denied messages 
for something else (Mozilla?). These were posted here just in case they 
  were related.
Richard Hally





More information about the selinux mailing list