acv denied from screensaver
Richard Hally
rhally at mindspring.com
Mon Jul 12 21:24:43 UTC 2004
Daniel J Walsh wrote:
> Richard Hally wrote:
>
>> The messages below occured while booting with the latest strict policy
>> in enforcing mode. One of the things that is not working is the
>> screensaver. The first message indicates that the problem with the
>> screensaver may be related to context of files in /tmp created by xdm.
>>
>>
>> Jul 10 03:13:22 new2 kernel: audit(1089443602.916:0): avc: denied {
>> search } for pid=3288 exe=/usr/X11R6/bin/xscreensaver name=.X11-unix
>> dev=hda2 ino=1840550 scontext=richard:staff_r:staff_screensaver_t
>> tcontext=system_u:object_r:xdm_tmp_t tclass=dir
>>
>> The additional messages below may or may not be related.
>>
>> Jul 10 03:13:24 new2 kernel: audit(1089443604.337:0): avc: denied {
>> create } for pid=3161 exe=/usr/bin/gnome-session
>> scontext=richard:staff_r:staff_t tcontext=richard:staff_r:staff_t
>> tclass=netlink_route_socket
>
>
> These should have been dontaudited. Are you running with enableaudit?
>
There was a time when I did 'enableaudit' to get the avc denied messages
for something else (Mozilla?). These were posted here just in case they
were related.
Richard Hally
More information about the selinux
mailing list