MRTG errors with SELinux on

Jim Cornette penny-cornette at insight.rr.com
Mon Mar 22 22:53:52 UTC 2004 

When I was running this computer yesterday with selinux=1, I got this
mail message every few minutes. I am running with selinux=0 now and this
message does not show.

Also, kmail reported that there was file corruption when launching
without having selinux active.

I was also set off with a message that I got with usermount when selinux
was active. It asked for me to contact my administrator for access to
any usually user visible mounts. It works normally with selinux off.

There was also a problem with system-config-display. Posted below the
mail for the perl or mrtg error is an excerpt from the userland programs
that I had errors with.

Use of uninitialized value in string at /usr/bin/mrtg line 72.
Empty compile time value given to use lib at /usr/bin/mrtg line 72
Use of uninitialized value in concatenation (.) or string at
/usr/bin/mrtg line 73.
Can't locate MRTG_lib.pm in @INC (@INC contains: /../lib/mrtg2
/usr/lib/perl5/5.8.3/i386-linux-thread-multi /usr/lib/perl5/5.8.3
/usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi
/usr/lib/perl5/site_perl/5.8.2/i386-linux-thread-multi
/usr/lib/perl5/site_perl/5.8.1/i386-linux-thread-multi
/usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi
/usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl/5.8.2
/usr/lib/perl5/site_perl/5.8.1 /usr/lib/perl5/site_perl/5.8.0
/usr/lib/perl5/site_perl
/usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi
/usr/lib/perl5/vendor_perl/5.8.2/i386-linux-thread-multi
/usr/lib/perl5/vendor_perl/5.8.1/i386-linux-thread-multi
/usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi
/usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl/5.8.2
/usr/lib/perl5/vendor_perl/5.8.1 /usr/lib/perl5/vendor_perl/5.8.0
/usr/lib/perl5/vendor_perl .) at /usr/bin/mrtg line 78.
BEGIN failed--compilation aborted at /usr/bin/mrtg line 78.


excerpt from previous mail. <rant>
------------------------
The real distractions with SELinux is that everything seems to error out
with you don't have premission to perform this task, contact your
administrator. The simple task was to mount drives.

Message in pop-up states.
There are no filesystems which you are allowed to mount or unmount.
Contact your administrator.

OK! This used to work fine without SELinux. This limitation or
additional setup step will cause a lot of grief for users.

Now for trying to configure the display. Between running the command
from either a regular users terminal or launching from hat >> system
settings >> display. The trouble is more obvious that SELinux is getting
in the way. Running it from a root shell allows the program to work
correctly.

gnome-terminal as regular user shows below:
  system-config-display
Could not set exec context to user_u:sysadm_r:sysadm_t.
</rant>
--------------------------

Jim

More information about the selinux mailing list