Displaying 2 results from an estimated 2 matches for "initrc_tmp_t".
2005 Jul 06
0
SELinux startup issue on FC4...
...PATH msg=audit(1120675555.879:90329):
path="/tmp/shorewall.Gh1879/providers"
type=AVC msg=audit(1120675555.879:90329): avc: denied { read } for pid=2588
comm="ip" name="providers" dev=hda2 ino=3068205
scontext=system_u:system_r:ifconfig_t
tcontext=system_u:object_r:initrc_tmp_t tclass=file
Adding the following to the local.te will fix this, but I''d rather not
alter the provided policy:
allow ifconfig_t initrc_tmp_t:file read;
allow ifconfig_t sysctl_net_t:file write;
allow ifconfig_t var_lib_t:file read;
If there are any selinux policy gurus on the list, can y...
2013 Mar 19
3
Puppet modifying directories by executing shell script as non-root user results in kernel-level insufficient privilege complaints
...ed similar to the following:
kernel: type=1400 audit(1363697390.681:566): avc: denied { read write }
for pid=14834 comm="postgres" path="/tmp/puppet20130319-14620-1wpyixh-0"
dev=dm-0 ino=1702615 scontext=unconf
ined_u:system_r:postgresql_t:s0
tcontext=unconfined_u:object_r:initrc_tmp_t:s0 tclass=file
Basically, the messages are complaining that user postgres, via the
execution of initdb PostrgreSQL command, cannot write files to data, the
destined PGDATA directory, which has proper permissions as shown above by
the ls -ald data.
So, the problem is that Exec ["postgres i...