thr3ads.net - CentOS - [CentOS] [C8 stream] unix_chkpwd wants access to /proc [Jun 2021]

If this information is useful, please help other people find it:
Share via:

Łukasz Posadowski

2021-Jun-14 09:53 UTC

[CentOS] [C8 stream] unix_chkpwd wants access to /proc

Hi.
>From 11.06 journal is logging a lot of denied access to /proc forunix_chkpwd by selinux. They are so frequent, that I see them in
htop. :) Right now I have 2122 logges denials. 

Is it OK for unix_chkpwd to poke in /proc? It has to know who is
logged in, do probably yes, bit I'm not sure.

cheers

-- 
?ukasz Posadowski

Chris Adams

2021-Jun-14 14:14 UTC

head link

[CentOS] [C8 stream] unix_chkpwd wants access to /proc

Once upon a time, ?ukasz Posadowski <mail at lukaszposadowski.pl>
said:> From 11.06 journal is logging a lot of denied access to /proc for
> unix_chkpwd by selinux. They are so frequent, that I see them in
> htop. :) Right now I have 2122 logges denials. 
> 
> Is it OK for unix_chkpwd to poke in /proc? It has to know who is
> logged in, do probably yes, bit I'm not sure.
I haven't dug into it, but I'm thinking there was some policy or library
change that isn't quite right... sssd_be also has the same denial on
startup (so every boot).

-- 
Chris Adams <linux at cmadams.net>

CentOS - Jun 2021 - [C8 stream] unix_chkpwd wants access to /proc

[CentOS] [C8 stream] unix_chkpwd wants access to /proc

[CentOS] [C8 stream] unix_chkpwd wants access to /proc