setroubleshootd not running
Dominick Grift
domg472 at gmail.com
Wed Apr 21 09:22:03 UTC 2010
On Wed, Apr 21, 2010 at 01:34:16AM -0500, Robert Nichols wrote:
> What, in the hopelessly complex chain of process startups, is supposed to start
> setroubleshootd? I find it is either not getting started or silently dieing on
Currently DBUS
> my Fedora 12 system. I find I've been getting a bunch of AVCs logged, with no
> alert of course, and no way to get those AVCs translated with human-readable
> timestamps so that I have the slightest chance of correlating those with
ausearch -m avc -ts recent --interpret
> anything else going on in the system. ("sealert -a
> /var/log/audit/audit.log" just dies with "NameError: global name
> 'avc' is not defined".)
>
> The manpage for sealert mentions a GUI browser. That must have been in
> somebody's wet dream, because there is no such thing. Regardless of how
> sealert is started, the GUI menu discussed in the manpage does not exist.
>
> Again, SElinux turns out to be a bigger pain than anything it is supposedly
> protecting against.
Please do not generalize, just because SETroubleshoot is not exactly a miracle that does not mean the rest of SELinux is a pain as well.
>
> --
> Bob Nichols "NOSPAM" is really part of my email address.
> Do NOT delete it.
> # sealert -a /var/log/audit/audit.log
> 11% doneTraceback (most recent call last):
> File "/usr/lib64/python2.6/site-packages/setroubleshoot/analyze.py", line 635, in task
> self.new_audit_record_handler(record_type, event_id, body_text, fields, line_number)
> File "/usr/lib64/python2.6/site-packages/setroubleshoot/analyze.py", line 661, in new_audit_record_handler
> self.avc_event_handler(audit_event)
> File "/usr/lib64/python2.6/site-packages/setroubleshoot/analyze.py", line 647, in avc_event_handler
> avc = AVC(audit_event)
> File "/usr/lib64/python2.6/site-packages/setroubleshoot/audit_data.py", line 586, in __init__
> self.derive_avc_info_from_audit_event()
> File "/usr/lib64/python2.6/site-packages/setroubleshoot/audit_data.py", line 884, in derive_avc_info_from_audit_event
> raise ValueError("Invalid AVC %s, it is allowed in current policy" % avc)
> NameError: global name 'avc' is not defined
> --
> selinux mailing list
> selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/selinux/attachments/20100421/0fbf8918/attachment.bin
More information about the selinux
mailing list