I have been getting the following SElinux alert:
SELinux is preventing key.dns_resolve from setattr access on the key
labeled kernel_t.
Is it safe to create a rule to ignore this? Known issue?
--
___
users mailing list -- users@lists.fedoraproject.org
Hi guys.
I’ve just installed vanilla-default MongoDB (following
their official docs) and right away SELinux shows denials:
... SELinux is preventing /usr/bin/mongod from search access
on the directory
/var/lib/containers/storage/overlay-containers
On 22 Sep 2023 at 8:04, George N. White III wrote:
From: "George N. White III"
Date sent: Fri, 22 Sep 2023 08:04:24 -0300
Subject:Re: Noticed Failed message with selinux-policy-targeted on 3 of
5 machines??
To: mi...@guam.net,
Community support for Fedora u
On Thu, Sep 21, 2023 at 3:30 PM Michael D. Setzer II via users <
users@lists.fedoraproject.org> wrote:
> On 21 Sep 2023 at 20:09, Zdenek Pytela wrote:
>
> From: Zdenek Pytela
>
[...]
>
> > It looks like you have quite an old container-selinux installed. (
On 21 Sep 2023 at 20:09, Zdenek Pytela wrote:
From: Zdenek Pytela
Date sent: Thu, 21 Sep 2023 20:09:44 +0200
Subject:Re: Noticed Failed message with selinux-policy-targeted on 3 of
5 machines??
To: mi...@guam.net
Copies to: Community support for Fedora users
Send reply
On Thu, Sep 21, 2023 at 7:21 PM Michael D. Setzer II wrote:
> On 21 Sep 2023 at 16:23, Zdenek Pytela wrote:
>
> From: Zdenek Pytela
> Date sent: Thu, 21 Sep 2023 16:23:01 +0200
> Subject:Re: Noticed Failed message with selinux-policy-targeted on
> 3 of 5 machi
On 21 Sep 2023 at 16:23, Zdenek Pytela wrote:
From: Zdenek Pytela
Date sent: Thu, 21 Sep 2023 16:23:01 +0200
Subject:Re: Noticed Failed message with selinux-policy-targeted on 3 of
5 machines??
To: mi...@guam.net
Copies to: Community support for Fedora users
Send reply
On Thu, Sep 21, 2023 at 12:28 AM Michael D. Setzer II
wrote:
> On 20 Sep 2023 at 19:57, Zdenek Pytela wrote:
>
> From: Zdenek Pytela
> Date sent: Wed, 20 Sep 2023 19:57:31 +0200
> Subject:Re: Noticed Failed message with selinux-policy-targeted on
> 3 of 5 machi
On 20 Sep 2023 at 19:57, Zdenek Pytela wrote:
From: Zdenek Pytela
Date sent: Wed, 20 Sep 2023 19:57:31 +0200
Subject:Re: Noticed Failed message with selinux-policy-targeted on 3 of
5 machines??
To: mi...@guam.net,
Community support for Fedora users
Send reply
On Wed, Sep 20, 2023 at 8:25 AM Michael D. Setzer II via users <
users@lists.fedoraproject.org> wrote:
> In running dnf update on 5 machines noticed a fail message on 3 or 5?
> To double check ran dnf reinstall selinux* and get this on failing systems?
>
> Running transaction c
In running dnf update on 5 machines noticed a fail message on 3 or 5?
To double check ran dnf reinstall selinux* and get this on failing systems?
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transaction
Running scriptlet
On 14Aug2023 09:18, François Patte wrote:
Here is the part I get with ssh -v:
debug1: Next authentication method: publickey
debug1: Offering public key: /home/patte/.ssh/id_rsa RSA SHA256:
**
I have a server accepts line after this:
debug1: Next authentication
onf
system_u:object_r:etc_t:s0 /etc/sysconfig/nftables.conf
I'm still on FC36, on this box.
Try restoring the SELinux contexts, as Ian says. It should set them
back to the expected ones, and things should work normally (if *that*
is the problem).
SELinux will disallow reading of some files, if it appe
uot;/etc/sysconfig/nftables.conf": Permission denied
>
> This file /etc/sysconfig/nftables.conf has 755 permissions.
>
> I tried to get informatons from the internet but did not find a
> solution.
>
> I tested wether it was a selinux problem and I won...
>
> setenforce
nf has 755 permissions.
I tried to get informatons from the internet but did not find a solution.
I tested wether it was a selinux problem and I won...
setenforce 0
Have you tried 'restorecon -r /etc/sysconfig'?
--
=
Le 2023-08-14 00:04, Cameron Simpson a écrit :
On 13Aug2023 23:23, François Patte
wrote:
Since I upgraded to f38 it is impossible to connect to a machine using
ssh rsa-key
the file .ssh/authorized_keys has not change, but any remote
connection to this machine asks for a password
On 13Aug2023 23:23, François Patte wrote:
Since I upgraded to f38 it is impossible to connect to a machine using
ssh rsa-key
the file .ssh/authorized_keys has not change, but any remote
connection to this machine asks for a password
Is there something to change with selinux
On Sunday, August 13, 2023 5:23:51 PM EDT François Patte wrote:
> Since I upgraded to f38 it is impossible to connect to a machine using
> ssh rsa-key
The RSA algorithm is considered too weak to be safe and has been
disabled in the ssh program.
The work-around if you cannot convert to, say,
/23 17:23, François Patte wrote:
Bonjour,
Since I upgraded to f38 it is impossible to connect to a machine using
ssh rsa-key
the file .ssh/authorized_keys has not change, but any remote
connection to this machine asks for a password
Is there something to change with selinux?
Thank you
Bonjour,
Since I upgraded to f38 it is impossible to connect to a machine using
ssh rsa-key
the file .ssh/authorized_keys has not change, but any remote connection
to this machine asks for a password
Is there something to change with selinux?
Thank you.
--
François Patte
UFR de
Den 2023-08-12 kl. 18:07, skrev François Patte:
Bonjour,
I come accross a problem with nftables: it was impossible to start
nftables, the error message is:
internal:0:0-0: Error: Could not open file
"/etc/sysconfig/nftables.conf": Permission denied
I think this is selinux
nformatons from the internet but did not find a
solution.
I tested wether it was a selinux problem and I won...
setenforce 0
solved the problem
Now I went back to setenforce 1 but the problem is : if I reboot my
machine, the problem will come back.
How to make selinux accept nftab
> Am 22.04.2023 um 15:40 schrieb Ranjan Maitra :
>
> I tried to change selinux to permissive on the F38 box, and then I was able
> to mount the share. However, the F37 box mounts the share fine, with selinux
> set at enforcing. So, should a separate context need to be
Barry,
Thanks for this! To answer some of your questions, I do not know what the
version of Windows is. It is something that is fairly recent, but has not been
changed for years.
After looking at dmesg (as recommended by the error message), and
/var/log/messages, I tried to change selinux
On Tue, 21 Mar 2023 21:50:22 +0100
Patrick Dupre wrote:
> >
> > >> I get the following SELinux security alert which seems to be
> > >> difficult to fix because of the number of things to do.
> >
> > I don't understand why you think two things to d
>
> >> I get the following SELinux security alert which seems to be
> >> difficult to fix because of the number of things to do.
>
> I don't understand why you think two things to do is difficult.
Because, every time that I make
semanage fcontext -a -t syslog_conf_t
I get the following SELinux security alert which seems to be
difficult to fix because of the number of things to do.
I don't understand why you think two things to do is difficult.
You can generate a local policy module to allow this access.
Do allow this access for now by executing
Hi
On Mon, 20 Mar 2023 10:28:35 +0100 Patrick Dupre wrote:
> I did not get retuen about my request.
There was. Please, see the archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org/thread/NEDFHZEENU3YPWXCKENB2FDYL4YHYOW6/#5LDTZCEMCGHQHKSLJXRS3QIFVZ3IYE73
--
ent: Thursday, March 16, 2023 at 10:32 AM
> From: "Patrick Dupre"
> To: "fedora"
> Subject: SELinux seciruty alert
>
> Hello,
>
> I get the following SELinux security alert which seems to be difficult
> to fix because of the number of things to do.
> Is
Hi.
On Thu, 16 Mar 2023 10:32:27 +0100 Patrick Dupre wrote:
> SELinux is preventing systemd from open access on the file
> /var/usermin/miniserv.pid.
Another solution beside fixing the selinux context would perhaps be to change
the associated .service file to not use a .pid file.
On Thu, 16 Mar 2023 10:32:27 +0100
Patrick Dupre wrote:
> I get the following SELinux security alert which seems to be difficult
> to fix because of the number of things to do.
There is really only one thing to do, just run the two commands with
the proper selinux context selected as fi
Hello,
I get the following SELinux security alert which seems to be difficult
to fix because of the number of things to do.
Is there a simple thing that I could do?
Thanks
SELinux is preventing systemd from open access on the file
/var/usermin/miniserv.pid.
* Plugin catchall_labels
ntext=system_u:system_r:abrt_t:s0-s0:c0.c1023
> tcontext=system_u:object_r:sound_device_t:s0 tclass=chr_file
>
> selinux alerts for gdb and devtmpfs looks like a known issue:
> https://bugzilla.redhat.com/show_bug.cgi?id=1896648
Yes, a known issue - it is required to turn this boolean o
ges
> type=AVC msg=audit(1643524262.137:696): avc: denied { open } for pid=74330
> comm="gdb" path="/dev/snd/pcmC0D0p" dev="devt
> mpfs" ino=532 scontext=system_u:system_r:abrt_t:s0-s0:c0.c1023
> tcontext=system_u:object_r:sound_device_t:s0 tclass=chr_file
s
On 12/7/22 13:04, Jeffrey Walton wrote:
On Wed, Dec 7, 2022 at 11:16 AM Robert McBroom via users
wrote:
SELinux is preventing gdb from read access on the chr_file pcmC0D0p.
What would call debug on boot sequence?
More information may be found in /var/log/audit/audit.log. `sealert -l
On Wed, Dec 7, 2022 at 11:16 AM Robert McBroom via users
wrote:
>
> SELinux is preventing gdb from read access on the chr_file pcmC0D0p.
>
> What would call debug on boot sequence?
More information may be found in /var/log/audit/audit.log. `sealert -l
"*"` might also provid
SELinux is preventing gdb from read access on the chr_file pcmC0D0p.
What would call debug on boot sequence?
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code
>
> On 2022-07-12 01:02, Patrick Dupre wrote:
> > I do not how to deal wit this issue: in fc34 and fc36.
> >
> > SELinux security alert recommend the following:
> >
> > You need to change the label on /var/usermin/miniserv.pid
> > # semanage fcontext
On 2022-07-12 01:02, Patrick Dupre wrote:
I do not how to deal wit this issue: in fc34 and fc36.
SELinux security alert recommend the following:
You need to change the label on /var/usermin/miniserv.pid
# semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
where FILE_TYPE is one
Hello,
I do not how to deal wit this issue: in fc34 and fc36.
SELinux security alert recommend the following:
You need to change the label on /var/usermin/miniserv.pid
# semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
where FILE_TYPE is one of the following
Hello,
I have the recommendation
You need to change the label on /var/usermin/miniserv.pid
# semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
where FILE_TYPE is one of the following: NetworkManager_etc_rw_t,
NetworkManager_etc_t, NetworkManager_exec_t,
etc...
a long list of
> On 7/3/22 10:03, Patrick Dupre wrote:
> > I cannot delete it.
> > I tried to follow the recommendations with you success.
> > This machine is still in FC34 before I have time to backup the machine,
> > etc..
>
> Just to make sure: did you try the instructions as yourself or as root?
As root
>
On 7/3/22 10:03, Patrick Dupre wrote:
I cannot delete it.
I tried to follow the recommendations with you success.
This machine is still in FC34 before I have time to backup the machine, etc..
Just to make sure: did you try the instructions as yourself or as root?
Hello,
I permanently get thus alert:
on file /var/usermin/miniserv.pid
You need to change the label on /var/usermin/miniserv.pid
# semanage fcontext -a -t FILE_TYPE '/var/usermin/miniserv.pid'
where FILE_TYPE is one of the following: NetworkManager_etc_rw_t,
NetworkManager_etc_t,
Il giorno gio, 19/05/2022 alle 07.37 -0700, stan via users ha scritto:
> File a bug for selinux. If it isn't theirs, they will forward it to
> NetworkManager. You should include the above command you used to
> work
> around the issue.
I have fill this bug:
https://bugzill
y problem.
> Is this modify permanent at boot or I must repeat every restart?
>
It persists reboot. To undo, execute:
sudo semanage permissive -d NetworkManager_dispatcher_t
> Another question:
>
> Is this a SElinux or Network-Manager bug?
> I must fill a bugzilla or not?
>
Ge
y problem.
> Is this modify permanent at boot or I must repeat every restart?
The man page for selinux-permissive isn't clear to me on this question.
But the fact it is creating a permissive module suggests that it will
survive both reboots and selinux updates. Probably not an selinux
relab
question:
Is this a SElinux or Network-Manager bug?
I must fill a bugzilla or not?
Thanks
Dario
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduc
.fedoraproject.org
> Fedora Code of Conduct:
> https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:
> https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
> D
Il giorno mar, 17/05/2022 alle 19.42 +0200, Zdenek Pytela ha scritto:
> If the /etc/NetworkManager/dispatcher.d/15-vpn-disp file is not a
> part of any package, the following command should set the correct
> label:
>
> # restorecon -v /etc/NetworkManager/dispatcher.d/15-vpn-disp
>
> but that
On Tue, May 17, 2022 at 1:07 PM Dario Lesca wrote:
> After update to Fedora 36 I have a selinux problem with my personal
> NetworkManager dispatcher script
>
> Into logs I get this error:
>
> mag 17 12:56:30 dodo.home.solinos.it audit[160270]: AVC avc: denied {
> getattr }
After update to Fedora 36 I have a selinux problem with my personal
NetworkManager dispatcher script
Into logs I get this error:
mag 17 12:56:30 dodo.home.solinos.it audit[160270]: AVC avc: denied { getattr
} for pid=160270 comm="nm-dispatcher"
path="/etc/NetworkManager/disp
It worked after I did `setenforce 0`, so SELinux is the problem. I have
my swap file inside its own BTRFS subvolume mounted at /swap and the
SELinux context for that directory is system_u:object_r:unlabeled_t:s0.
It looks like I need to allow systemd-sleep to search that directory. I
think
On 4/17/22 22:09, Joe Zeff wrote:
On 4/17/22 22:47, Alexander Zhang wrote:
It worked after I did `setenforce 0`, so SELinux is the problem. I
have my swap file inside its own BTRFS subvolume mounted at /swap and
the SELinux context for that directory is
system_u:object_r:unlabeled_t:s0
Easier still is to remove that partition from fstab and reformat it as a
swap partition.
I guess I can use a swap partition, but since I use LUKS without LVM, I
would have to make a separate LUKS volume. I wanted to use a swap file
so that everything is in one LUKS volume.
(I forgot to
On 4/17/22 22:47, Alexander Zhang wrote:
It worked after I did `setenforce 0`, so SELinux is the problem. I have
my swap file inside its own BTRFS subvolume mounted at /swap and the
SELinux context for that directory is system_u:object_r:unlabeled_t:s0.
It looks like I need to allow systemd
First try would be to disable SELinux to confirm your hypothesis.
However even if you fix the selinux problem i do not think this will
work, you need to have a swap partition for hibernate / resume to work,
the systemd-hibernate-resume man page makes reference to needing a
specific device node
/red_hat_enterprise_linux/7/html/selinux_users_and_administrators_guide/sect-security-enhanced_linux-working_with_selinux-selinux_contexts_labeling_files
However even if you fix the selinux problem i do not think this will
work, you need to have a swap partition for hibernate / resume to work
systemctl
> hibernate only locks and briefly turns off the screen. I found these lines
> in the logs, which seems to indicate that SELinux is causing the issue:
>
> Apr 15 23:16:14 fedora systemd[1]: Reached target Sleep.
> Apr 15 23:16:14 fedora systemd[1]: Starting Hibernate...
>
ns off the screen. I found these lines in the
logs, which seems to indicate that SELinux is causing the issue:
First try would be to disable SELinux to confirm your hypothesis.
Regards.
--
Roberto Ragusamail at robertoragusa.it
___
users mailin
e logs, which seems to indicate that SELinux is
causing the issue:
Apr 15 23:16:14 fedora systemd[1]: Reached target Sleep.
Apr 15 23:16:14 fedora systemd[1]: Starting Hibernate...
Apr 15 23:16:14 fedora systemd-sleep[9774]: Failed to find location to
hibernate to: Permission denied
Apr 15 23
rying to
>> > access.
>>
>> Considering how random this appears to be, I would have to turn full
>> auditing on for some time. Plus they don't provide how to turn it back
>> off.
>>
>> >
>> >>>>>> Additional Information:
>>
have to turn full
auditing on for some time. Plus they don't provide how to turn
it back
off.
>
>>>>>> Additional Information:
>>>>>> Source Context system_u:system_r:logwatch_mail_t:s0-s0:c0.c1023
>>>>>> Target Cont
uditing on for some time. Plus they don't provide how to turn it back
> off.
>
> >
> >>>>>> Additional Information:
> >>>>>> Source Context system_u:system_r:logwatch_mail_t:s0-s0:c0.c1023
> >>>>>> Target Context syst
. The problem is that it's being run from the
context listed above and that's what is being denied. Depending on
what it's trying to access, it might be an issue for the selinux policy.
Are you running it as a systemd service or running it from cron?
All I did was dnf install logwatch
# ls -Z /usr/sbin/logwatch
system_u:object_r:bin_t:s0 /usr/sbin/logwatch
This isn't really useful. The problem is that it's being run from the
context listed above and that's what is being denied. Depending on what
it's trying to access, it might be an issue for the selinux policy.
Are you
On 1/5/22 21:16, Ed Greshko wrote:
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list
On 06/01/2022 09:25, Robert Moskowitz wrote:
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here
On 1/5/22 17:17, Ed Greshko wrote:
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full detail; it looks like it may be logwatch
On 05/01/2022 21:02, Robert Moskowitz wrote:
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full detail; it looks like it may be logwatch causing the problem.
What do I do
I keep getting these errors.
I got them back with F32 and Xfce, and now with F35 and Xfce.
I asked on the SElinux list, but no one seems to be home.
Here is the full detail; it looks like it may be logwatch causing the
problem. What do I do to fix this?
===
SELinux
On 10/12/2021 10:22, Nick Urbanik wrote:
There is an ongoing problem of decay of selinux labels on this
machine; I would appreciate any suggestions on how to troubleshoot
this I find it alarming.
I wouldn't call it a "decay". If it were that I wouldn't expect the context to
On 06/12/21 09:10 +1100, Nick Urbanik wrote:
On 05/12/21 09:59 -0500, Jonathan Billings wrote:
On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
I am regularly having selinux labels changing. This should never
happen, but it does quite continuously; many critical executables lose
their correct
system_u:object_r:cupsd_etc_t:s0 to
system_u:object_r:cupsd_rw_etc_t:s0
Can you tell us what version of the SELinux policy you have? Maybe
“rpm -qa | grep selinux”.
$ rpm -qa | grep selinux
rpm-plugin-selinux-4.17.0-1.fc35.x86_64
dnfdaemon-selinux-0.3.20-7.fc35.noarch
libselinux-3.3-1.fc35.x86_64
libselinux-utils-3.3-1
t_r:cupsd_etc_t:s0
> to system_u:object_r:cupsd_rw_etc_t:s0
Can you tell us what version of the SELinux policy you have? Maybe “rpm -qa |
grep selinux”. I see a lot of policy change related updates there, as well as
stuff in /bin having generic context instead of specific context.
Also, how do you update? Command line DNF
On 05/12/21 09:59 -0500, Jonathan Billings wrote:
On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
I am regularly having selinux labels changing. This should never
happen, but it does quite continuously; many critical executables lose
their correct label, preventing me from logging in without
> On Dec 5, 2021, at 05:44, Nick Urbanik wrote:
>
> I am regularly having selinux labels changing. This should never
> happen, but it does quite continuously; many critical executables lose
> their correct label, preventing me from logging in without a relabel.
>
&
Dear Folks,
I am regularly having selinux labels changing. This should never
happen, but it does quite continuously; many critical executables lose
their correct label, preventing me from logging in without a relabel.
This is Fedora 35, upgraded over quite a few generations of Fedora.
The root
Le 2021-08-17 01:25, Thomas Cameron a écrit :
Thank you for answering. This video is going a little bit to fast for
me: if I can read and speak English, it is easier for me if people
speak a bit slower...
Anyway, as far as I understand, if I want to re-enable selinux I have
to:
1- change
...
Anyway, as far as I understand, if I want to re-enable selinux I have
to:
1- change the config file to enforcing
2- touch /.autorelabel
3- reboot
Did I miss something?
Yes, that will work.
___
users mailing list -- users@lists.fedoraproject.org
Thank you for answering. This video is going a little bit to fast for
me: if I can read and speak English, it is easier for me if people speak
a bit slower...
Anyway, as far as I understand, if I want to re-enable selinux I have to:
1- change the config file to enforcing
2- touch
Le 2021-08-16 17:35, Thomas Cameron a écrit :
This may be helpful:
Security-Enhanced Linux for mere mortals
https://www.youtube.com/watch?v=_WOKRaM-HI4
I gave this presentation at Red Hat Summit a couple of years ago, it's
still relevant. I talk about how to enable SELinux on a system where
On Mon, 2021-08-16 at 08:50 -0700, Doug H. wrote:
> On Mon, Aug 16, 2021, at 7:53 AM, François Patte wrote:
> > Bonjour,
> >
> > For some reason (I explain later) I disabled selinux in
> > /etc/selinux/config file.
> >
> > When I re-enabled selinux (SELINU
On Mon, Aug 16, 2021, at 7:53 AM, François Patte wrote:
> Bonjour,
>
> For some reason (I explain later) I disabled selinux in
> /etc/selinux/config file.
>
> When I re-enabled selinux (SELINUX=enforcing in the config file) I could
> not restart my system: no service
This may be helpful:
Security-Enhanced Linux for mere mortals
https://www.youtube.com/watch?v=_WOKRaM-HI4
I gave this presentation at Red Hat Summit a couple of years ago, it's
still relevant. I talk about how to enable SELinux on a system where
it's been disabled.
Hope this helps!
Thomas
Bonjour,
For some reason (I explain later) I disabled selinux in
/etc/selinux/config file.
When I re-enabled selinux (SELINUX=enforcing in the config file) I could
not restart my system: no service could start and I got a kernel panic.
I had to rescue my system (see my other post
Bonjour,
Sometimes selinux blocks access to a file without any clear reasons:
yesterday it was ok, today it is blocked... Why? I don't know, I changed
nothing, did not make any upgrade...
Today dictd cannot start:
SELinux forbids dictd an open access to /var/log/dictd.log.
Suggestion
On Wed, 2021-05-12 at 12:55 -0600, home user wrote:
> That's as much of an answer as I can give.
> This all applies to both the SELinux problems and what was addressed
> in my "System Failure?" thread.
DNF has a history command, which shows what was installed at various
stages
o:mattis...@comcast.net>> wrote:
The SELinux alerts stopped on Thursday April 29. That would have been
when I did weekly patches ("dnf upgrade"). I also did weekly patches on
Thursday, May 06. Since the alerts did not start showing up again, I'm
now confident they're
I'm wondering?the ugrade/patches fixed it?would it have been fixed
"sooner" if you had run the dnf upgrade sooner? or was it the "latest"
upgrade/patch that did it?...
On Tue, May 11, 2021, 12:35 PM home user wrote:
> The SELinux alerts stopped on Thursday Apr
The SELinux alerts stopped on Thursday April 29. That would have been
when I did weekly patches ("dnf upgrade"). I also did weekly patches on
Thursday, May 06. Since the alerts did not start showing up again, I'm
now confident they're really fixed.
I've added a comment
This morning, I was able to get SELinux alerts when running
totem-video-thumbnailer. I submitted a bug. Here's the link:
"https://bugzilla.redhat.com/show_bug.cgi?id=1951668;.
___
users mailing list -- users@lists.fedoraproject.org
To unsubs
On 4/16/21 8:51 PM, Tim via users wrote:
On Fri, 2021-04-16 at 11:27 -0500, Roger Heflin wrote:
given a video file and an png file to output it fails on my system
also (and that is with selinux as permissive and as root, so it seems
to have many issues and is simply broken in most if not all
On Fri, 2021-04-16 at 11:27 -0500, Roger Heflin wrote:
> given a video file and an png file to output it fails on my system
> also (and that is with selinux as permissive and as root, so it seems
> to have many issues and is simply broken in most if not all use
> cases), and I don't
On 4/16/21 10:27 AM, Roger Heflin wrote:
That matches what Ed had called out that it was a GL* command.
I guess that also tells you why you did not notice the failing..
given a video file and an png file to output it fails on my system
also (and that is with selinux as permissive and as root
That matches what Ed had called out that it was a GL* command.
I guess that also tells you why you did not notice the failing..
given a video file and an png file to output it fails on my system
also (and that is with selinux as permissive and as root, so it seems
to have many issues
On 4/16/21 5:41 AM, Roger Heflin wrote:
It seems to be running /usr/bin/totem-video-thumbnailer" so would be
something attempting to create a thumbnail for the file if it is a
video.
It has an extension of .mkv so it thinks it is a video file or is it
something else?
It is a video file.
the
It seems to be running /usr/bin/totem-video-thumbnailer" so would be
something attempting to create a thumbnail for the file if it is a
video.
It has an extension of .mkv so it thinks it is a video file or is it
something else?
the command was:
/usr/bin/totem-video-thumbnailer -s 128
On 4/15/21 8:27 PM, home user wrote:
The grep for the process ID "2636" found lines.
Correction:
The grep for the process ID "2636" found 34361 lines.
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to
;/usr/bin/totem-video-thumbnailer",
["/usr/bin/totem-video-thumbnailer", "-s", "128",
"file:///home/bill/KhongWe"..., "/tmp/.mate_desktop_thumbnail.19V"...],
0x7ffdd556b338 /* 69 vars */
2636 <... execve resumed>) = 0
2652 op
1 - 100 of 1524 matches
Mail list logo