Problems with SELinux and cronjobs

Daniel J Walsh dwalsh at redhat.com
Tue Jun 1 19:00:07 UTC 2010


On 05/28/2010 09:42 AM, Gijs wrote:
> Hello List,
>
> I'm trying to get my cronjobs to work but after reading all kinds of
> info on SELinux, I'm not even one step closer to solving the problem. I
> have the following in my cronlog (yes, SELinux is set in permissive
> mode, for now..):
> May 28 09:15:01 mail crond[21390]: CRON (*system*) ERROR:Could not set
> exec context to user_u:system_r:unconfined_t for user,  but SELinux in
> permissive mode, continuing
> May 28 09:15:01 mail crond[21391]: (root) CMD (/somescript.sh)
> May 28 09:16:01 mail crond[21395]: CRON (root) ERROR:Could not set exec
> context to root:system_r:unconfined_t:SystemLow-SystemHigh for user,
> but SELinux in permissive mode, continuing
> May 28 09:16:01 mail crond[21396]: (root) CMD (/usr/bin/php
> /somephpfile.php>  /dev/null 2>&1)
>
> Since the cronjobs run every 15 minutes, I get tons of these messages.
> The first errormessage is from my systemwide cron, and the other is from
> a cronjob that is set with "crontab -e".
>
> [root at mail ~]# ls -laZ /somescript.sh
> -rwxr-xr-x  root root root:object_r:user_home_t:s0     /somescript.sh
>
> [root at mail ~]# ls -laZ /somephpfile.php
> -rwxr-xr-x  someuser somegroup root:object_r:user_home_t:s0
> /somephpfile.php
>
> I have absolutely no idea what to do to solve this. I have no idea what
> a "exec context" is for that matter, nor can I find any understandable
> information on that subject.
>
> Hope someone can help me with this.
>
> Regards, Gijs
What OS are you running?  Which version of selinux-policy
rpm -q selinux-policy


More information about the users mailing list