FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora SELinux Support

 
 
LinkBack Thread Tools
 
Old 02-04-2008, 03:09 PM
Jason L Tibbitts III
 
Default Denial when calling /bin/mail from initscripts

This is a bit odd; I have my machines send an email when they reboot,
and this worked previous to F8 but no F8 it seems that selinux is
preventing that from working properly. rc.local has something like:

HN=`hostname`
date | mail -s $HN obscured@address

When the mail is sent I get the following denial:

audit(1202140440.123:4): avc: denied { read } for pid=2752 comm="sendmail" path=2F746D702F527357566E686E52202864656C657465642 9 dev=dm-3 ino=98307 scontext=system_u:system_r:sendmail_t:s0 tcontext=system_ubject_r:initrc_tmp_t:s0 tclass=file

and a message is sent, but it's mostly empty (no body and no
subject). audit2allow just says

#============= sendmail_t ==============
allow sendmail_t initrc_tmp_t:file read;

but as is unfortunately almost always the case with selinux things, I
understand that would work but I don't understand if it exposes me to
anything or could cause problems later.

- J<

--
fedora-selinux-list mailing list
fedora-selinux-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
 

Thread Tools




All times are GMT. The time now is 04:10 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org