[SlimDevices: Beta] SELinux alert on Fedora 8

Wed, 20 Feb 2008 08:11:19 -0800 

Fletch,

I'm seeing this SELinux alert on Fedora 8.

I've not got time to look at it now, but have been meaning to bring it 
up for a while.

R.


Summary
     SELinux is preventing /usr/libexec/mysqld (mysqld_t) "read write" to
     /var/log/squeezecenter/server.log-20080217 (var_log_t).

Detailed Description
     SELinux denied access requested by /usr/libexec/mysqld. It is not 
expected
     that this access is required by /usr/libexec/mysqld and this access may
     signal an intrusion attempt. It is also possible that the specific 
version
     or configuration of the application is causing it to require additional
     access.

Allowing Access
     Sometimes labeling problems can cause SELinux denials.  You could 
try to
     restore the default system file context for
     /var/log/squeezecenter/server.log-20080217, restorecon -v
     /var/log/squeezecenter/server.log-20080217 If this does not work, 
there is
     currently no automatic way to allow this access. Instead,  you can 
generate
     a local policy module to allow this access - see
     http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385 Or you can 
disable
     SELinux protection altogether. Disabling SELinux protection is not
     recommended. Please file a 
http://bugzilla.redhat.com/bugzilla/enter_bug.cgi
     against this package.

Additional Information

Source Context                system_u:system_r:mysqld_t:s0
Target Context                unconfined_u:object_r:var_log_t:s0
Target Objects                /var/log/squeezecenter/server.log-20080217 
[ file
                               ]
Affected RPM Packages         mysql-server-5.0.45-6.fc8 [application]
Policy RPM                    selinux-policy-3.0.8-81.fc8
Selinux Enabled               True
Policy Type                   targeted
MLS Enabled                   True
Enforcing Mode                Enforcing
Plugin Name                   plugins.catchall_file
Host Name                     phoenix.robinbowes.com
Platform                      Linux phoenix.robinbowes.com 
2.6.23.14-115.fc8 #1
                               SMP Mon Jan 21 14:20:50 EST 2008 i686 i686
Alert Count                   1
First Seen                    Sun 17 Feb 2008 04:04:26 GMT
Last Seen                     Sun 17 Feb 2008 04:04:26 GMT
Local ID                      01b6cca7-cf3e-47be-a891-038afa8a946b
Line Numbers

Raw Audit Messages

avc: denied { read write } for comm=mysqld dev=dm-2 egid=489 euid=495
exe=/usr/libexec/mysqld exit=0 fsgid=489 fsuid=495 gid=489 items=0
path=/var/log/squeezecenter/server.log-20080217 pid=6223
scontext=system_u:system_r:mysqld_t:s0 sgid=489
subj=system_u:system_r:mysqld_t:s0 suid=495 tclass=file
tcontext=unconfined_u:object_r:var_log_t:s0 tty=(none) uid=495

_______________________________________________
beta mailing list
beta@lists.slimdevices.com
http://lists.slimdevices.com/lists/listinfo/beta

Reply via email to