acpid avcs
Daniel J Walsh
dwalsh at redhat.com
Sat Dec 24 12:43:08 UTC 2005
Steve G wrote:
> Hi...from my logs:
>
> type=PATH msg=audit(12/23/2005 10:36:04.030:20507) : item=0 name=(null)
> inode=14909846 dev=03:07 mode=socket,666 ouid=root ogid=root rdev=00:00
> obj=system_u:object_r:var_run_t:s0
> type=SOCKADDR msg=audit(12/23/2005 10:36:04.030:20507) : saddr=local
> /var/run/acpid.socket
> type=SYSCALL msg=audit(12/23/2005 10:36:04.030:20507) : arch=x86_64
> syscall=connect success=no exit=-13(Permission denied) a0=4 a1=7fffffbf25c0
> a2=6e a3=7fffffbf2428 items=1 pid=2242 auid=unknown(4294967295) uid=root
> gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root
> comm=hald-addon-acpi exe=/usr/libexec/hald-addon-acpi
> subj=system_u:system_r:hald_t:s0
> type=AVC msg=audit(12/23/2005 10:36:04.030:20507) : avc: denied { write }
> for pid=2242 comm=hald-addon-acpi name=acpid.socket dev=hda7 ino=14909846
> scontext=system_u:system_r:hald_t:s0 context=system_u:object_r:var_run_t:s0
> tclass=sock_file
>
> This just scrolls for hours and hours...
>
>
You have a mislabled socket file in /var/run.
restorecon -v /var/run/acpid.socket
ls -lZ /var/run/acpid.socket
srw-rw-rw- root root system_u:object_r:apmd_var_run_t /var/run/acpid.socket
> -Steve
>
>
>
> __________________________________________
> Yahoo! DSL – Something to write home about.
> Just $16.99/mo. or less.
> dsl.yahoo.com
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>
--
More information about the selinux
mailing list