[Arm-dev] Semanage - Re: CentOS-userland 7 images : call for testers !

Robert Moskowitz rgm at htt-consult.com
Thu Dec 17 23:28:27 UTC 2015


Got the following from semanage (I changed the port number from what I 
entered):

# semanage port -a -t ssh_port_t -p tcp 999
[28733.118322] SELinux:  Class netlink_iscsi_socket not defined in policy.
[28733.125460] SELinux:  Class netlink_fib_lookup_socket not defined in 
policy.
[28733.132966] SELinux:  Class netlink_connector_socket not defined in 
policy.
[28733.140386] SELinux:  Class netlink_netfilter_socket not defined in 
policy.
[28733.147877] SELinux:  Class netlink_generic_socket not defined in policy.
[28733.155085] SELinux:  Class netlink_scsitransport_socket not defined 
in policy.
[28733.162860] SELinux:  Class netlink_rdma_socket not defined in policy.
[28733.169814] SELinux:  Class netlink_crypto_socket not defined in policy.
[28733.177009] SELinux:  Permission audit_read in class capability2 not 
defined in policy.
[28733.185544] SELinux:  Class binder not defined in policy.
[28733.191290] SELinux: the above unknown classes and permissions will 
be allowed
[28733.872053] SELinux:  Context 
system_u:unconfined_r:sandbox_t:s0-s0:c0.c1023 became invalid (unmapped).
[28733.999945] SELinux:  Context 
unconfined_u:unconfined_r:sandbox_t:s0-s0:c0.c1023 became invalid 
(unmapped).

Note that selinux is still in permissive mode.




More information about the Arm-dev mailing list