icmp Operation not permitted message on ping
don fisher
hdf3 at comcast.net
Fri Feb 10 15:13:39 UTC 2012
On 02/10/12 13:07, Rick Stevens wrote:
> On 02/10/2012 11:19 AM, Kevin Martin wrote:
>>
>>
>> On 02/10/2012 08:10 AM, don fisher wrote:
>>> On 02/10/12 11:15, Rick Stevens wrote:
>>>> On 02/10/2012 05:08 AM, don fisher wrote:
>>>>> On 02/10/12 08:17, Kevin Martin wrote:
>>>>>>
>>>>>>
>>>>>> On 02/09/2012 03:20 PM, don fisher wrote:
>>>>>>> Sorry to be back again. My mail and browser work, and I can ping as
>>>>>>> root. When I try to ping as a user I get:
>>>>>>>
>>>>>>> ping: icmp open socket: Operation not permitted
>>>>>>>
>>>>>>> There is probably a group that I need to add to my profile, but it
>>>>>>> was not obvious to me. Suggestions welcome. Is there a way to
>>>>>>> add groups to my account without using system-config-users?
>>>>>>>
>>>>>>> Where are these things documented?
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Don
>>>>>>
>>>>>> Don, what are the permissions on /bin/ping (ls -al /bin/ping)? Mine
>>>>>> are set to 755 (-rwxr-xr-x) and ping works for me as non-root.
>>>>>>
>>>>>> Kevin
>>>>> Yesterday I built a new system on another disk that allows ping to
>>>>> work
>>>>> as expected. My system crashed once,o a few thing must have been
>>>>> "disturbed". I was trying to figure out how t repair it.
>>>>
>>>> Smells like an selinux thing. Check your logs to see if you're getting
>>>> AVC denials. If so, you may need to relabel.
>>> Rick,
>>> Where are the seliunx messages logged? I looked in /var/log/secure
>>> and the only thing I saw was a notice of when I used sudo to
>>> test ping. What would I need to relabel? I am a dunce on security
>>> issues.
>
> They'd be in /var/log/messages if that's what's happening. You can
> "touch /.autorelabel" to force a full autorelabel on reboot. That can
> take some time.
> ----------------------------------------------------------------------
> - Rick Stevens, Systems Engineer, AllDigital ricks at alldigital.com -
> - AIM/Skype: therps2 ICQ: 22643734 Yahoo: origrps2 -
> - -
> - We are born naked, wet and hungry. Then things get worse. -
> ----------------------------------------------------------------------
Thanks. I tried that as you had mentioned it yesterday. I tried a new
version 3.2.3-2 of the kernel, but it will not handle my radeon chip
set. Still at 3.1.9-1. All I touch appears broken:-(
Don
More information about the users
mailing list