21 Sep
2010
21 Sep
'10
4:06 p.m.
Tim,
Timothy Murphy wrote:
I'm getting literally hundreds of lines in my daily logwatch (under Centos-5.5), reading
NULL security context for user, but SELinux in permissive mode, continuing ()
These began when I started running fail2ban (with shorewall), though that is probably a coincidence.
In any case, what does this line mean, and is there any way of stopping it (short of stopping selinux)?
Sounds to me as though it's *not* a coincidence. Who does fail2ban run as - for us, it's root, but is it different for you?
mark