Michael C Thompson wrote:
Steve Grubb wrote:
Hi,
The lspp.57 kernel has been published to the lspp yum repo at:
http://people.redhat.com/sgrubb/files/lspp
- audit xfrm config changes
- allow polyinstantiation rules where the type is the same (useful for
MLS
level only poly)
Please let me know if there any problems with this kernel.
Has anyone had success on ppc64 ? It looks like the initrd is
mis-compiled or something... here is what I am getting...
OK, so I managed to get this to work. However, I need to setenforce 0
first. This is with the selinux-policy-2.4.6-9.fc7 set of packages. I
upgraded prior to the LSPP call.
There seems to be some difference in doing the rpm -ivh kernel.rpm in
permissive mode, and run_init rpm -ivh kernel.rpm as secadm_r, but I
have no idea what...
I am getting a:
ybin: /dev/hsa1: Permission denied
message during the install, my guess is post-install phase problems?
Attached is the audit.log from the install process during enforcing mode.
Thanks,
Mike
type=USER_AUTH msg=audit(1165883661.075:259): user pid=1860 uid=0 auid=0
subj=root:sysadm_r:run_init_t:s0-s15:c0.c1023 msg='PAM: authentication
acct=root : exe="/usr/sbin/run_init" (hostname=?, addr=?, terminal=hvc0
res=success)'
type=USER_ACCT msg=audit(1165883661.085:260): user pid=1860 uid=0 auid=0
subj=root:sysadm_r:run_init_t:s0-s15:c0.c1023 msg='PAM: accounting acct=root :
exe="/usr/sbin/run_init" (hostname=?, addr=?, terminal=hvc0 res=success)'
type=AVC msg=audit(1165883661.086:261): avc: granted { setexec } for
pid=1860 comm="run_init" scontext=root:sysadm_r:run_init_t:s0-s15:c0.c1023
tcontext=root:sysadm_r:run_init_t:s0-s15:c0.c1023 tclass=process
type=SYSCALL msg=audit(1165883661.086:261): arch=14 syscall=4 success=yes
exit=43 a0=3 a1=8034920 a2=2b a3=fefefeff items=0 ppid=1611 pid=1860 auid=0
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=hvc0
comm="run_init" exe="/usr/sbin/run_init"
subj=root:sysadm_r:run_init_t:s0-s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883675.043:262): avc: granted { setexec } for
pid=1866 comm="rpm" scontext=system_u:system_r:rpm_t:s0-s15:c0.c1023
tcontext=system_u:system_r:rpm_t:s0-s15:c0.c1023 tclass=process
type=SYSCALL msg=audit(1165883675.043:262): arch=14 syscall=4 success=yes
exit=47 a0=15 a1=10061730 a2=2f a3=fffffffffefefeff items=0 ppid=1865 pid=1866
auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1
comm="rpm" exe="/bin/rpm" subj=system_u:system_r:rpm_t:s0-s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883677.226:263): avc: denied { getattr } for pid=2040
comm="lvm.static" name="0" dev=devpts ino=2
scontext=system_u:system_r:lvm_t:s0-s15:c0.c1023
tcontext=staff_u:object_r:auditadm_devpts_t:s15:c0.c1023 tclass=chr_file
type=SYSCALL msg=audit(1165883677.226:263): arch=14 syscall=195 success=no
exit=-13 a0=101ffb60 a1=ffb9dab8 a2=ffb9dab8 a3=fffffffffefefeff items=0
ppid=2039 pid=2040 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=pts1 comm="lvm.static" exe="/sbin/lvm.static"
subj=system_u:system_r:lvm_t:s0-s15:c0.c1023 key=(null)
type=AVC_PATH msg=audit(1165883677.226:263): path="/dev/pts/0"
type=AVC msg=audit(1165883677.271:264): avc: denied { getattr } for pid=2047
comm="lvm.static" name="0" dev=devpts ino=2
scontext=system_u:system_r:lvm_t:s0-s15:c0.c1023
tcontext=staff_u:object_r:auditadm_devpts_t:s15:c0.c1023 tclass=chr_file
type=SYSCALL msg=audit(1165883677.271:264): arch=14 syscall=195 success=no
exit=-13 a0=101ffb60 a1=ffd3dab8 a2=ffd3dab8 a3=fffffffffefefeff items=0
ppid=2046 pid=2047 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=pts1 comm="lvm.static" exe="/sbin/lvm.static"
subj=system_u:system_r:lvm_t:s0-s15:c0.c1023 key=(null)
type=AVC_PATH msg=audit(1165883677.271:264): path="/dev/pts/0"
type=AVC msg=audit(1165883682.184:265): avc: denied { write } for pid=2408
comm="ybin" name="hda1" dev=tmpfs ino=910
scontext=system_u:system_r:bootloader_t:s0-s15:c0.c1023
tcontext=system_u:object_r:fixed_disk_device_t:s15:c0.c1023 tclass=blk_file
type=SYSCALL msg=audit(1165883682.184:265): arch=14 syscall=33 success=no
exit=-13 a0=10138e58 a1=2 a2=10138ef0 a3=8 items=0 ppid=1869 pid=2408 auid=0
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1 comm="ybin"
exe="/bin/bash" subj=system_u:system_r:bootloader_t:s0-s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883729.026:266): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.026:266): arch=14 syscall=5 success=no
exit=-13 a0=fb1df6ae a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.054:267): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.054:267): arch=14 syscall=195 success=no
exit=-13 a0=fb1df6ae a1=fb1df608 a2=fb1df608 a3=0 items=0 ppid=2525 pid=2526
auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0
comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883729.054:268): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.054:268): arch=14 syscall=39 success=no
exit=-13 a0=fb1df6ae a1=1c0 a2=fb1df608 a3=0 items=0 ppid=2525 pid=2526
auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0
comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883729.055:269): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.055:269): arch=14 syscall=5 success=no
exit=-13 a0=807a488 a1=10000 a2=0 a3=fffffffffefefeff items=0 ppid=2525
pid=2526 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883729.055:270): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.055:270): arch=14 syscall=5 success=no
exit=-13 a0=807a488 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.055:271): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.055:271): arch=14 syscall=5 success=no
exit=-13 a0=807a488 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.055:272): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.055:272): arch=14 syscall=5 success=no
exit=-13 a0=fb1de5cc a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:273): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:273): arch=14 syscall=5 success=no
exit=-13 a0=807a330 a1=10000 a2=0 a3=18 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:274): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:274): arch=14 syscall=5 success=no
exit=-13 a0=807a330 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:275): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:275): arch=14 syscall=5 success=no
exit=-13 a0=807a330 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:276): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:276): arch=14 syscall=5 success=no
exit=-13 a0=fb1de5cc a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:277): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:277): arch=14 syscall=5 success=no
exit=-13 a0=807a348 a1=10000 a2=0 a3=18 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:278): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:278): arch=14 syscall=5 success=no
exit=-13 a0=807a348 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:279): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:279): arch=14 syscall=5 success=no
exit=-13 a0=807a348 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.056:280): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.056:280): arch=14 syscall=5 success=no
exit=-13 a0=fb1de5cc a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.236:281): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.236:281): arch=14 syscall=195 success=no
exit=-13 a0=807ee80 a1=fb1df170 a2=fb1df170 a3=8083280 items=0 ppid=2525
pid=2526 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883729.236:282): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.236:282): arch=14 syscall=5 success=no
exit=-13 a0=807ed40 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.237:283): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.237:283): arch=14 syscall=5 success=no
exit=-13 a0=807ed40 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.237:284): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.237:284): arch=14 syscall=5 success=no
exit=-13 a0=807ed40 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.237:285): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.237:285): arch=14 syscall=5 success=no
exit=-13 a0=807ee80 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883729.237:286): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883729.237:286): arch=14 syscall=5 success=no
exit=-13 a0=807ed40 a1=10000 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883730.591:287): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883730.591:287): arch=14 syscall=5 success=no
exit=-13 a0=807ed40 a1=10441 a2=1b6 a3=1b6 items=0 ppid=2525 pid=2526 auid=500
uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="ssh"
exe="/usr/bin/ssh" subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
key=(null)
type=AVC msg=audit(1165883730.673:288): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883730.673:288): arch=14 syscall=195 success=no
exit=-13 a0=8080fc8 a1=fb1df058 a2=fb1df058 a3=79000000 items=0 ppid=2525
pid=2526 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883730.673:289): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883730.673:289): arch=14 syscall=195 success=no
exit=-13 a0=80813a8 a1=fb1df058 a2=fb1df058 a3=79000000 items=0 ppid=2525
pid=2526 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
type=AVC msg=audit(1165883730.673:290): avc: denied { search } for pid=2526
comm="ssh" name="root" dev=dm-0 ino=131073
scontext=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023
tcontext=root:object_r:sysadm_home_dir_t:s0-s15:c0.c1023 tclass=dir
type=SYSCALL msg=audit(1165883730.673:290): arch=14 syscall=195 success=no
exit=-13 a0=80813e0 a1=fb1df058 a2=fb1df058 a3=79000000 items=0 ppid=2525
pid=2526 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 comm="ssh" exe="/usr/bin/ssh"
subj=staff_u:auditadm_r:auditadm_ssh_t:s15:c0.c1023 key=(null)
--
redhat-lspp mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-lspp
