[CentOS] SELinux policy change in new update?

Toby Schaefer

tschaefer at republicmo.com
Fri Apr 7 14:46:57 UTC 2006


Hello all,

  I’ve recently run some updates on my CentOS4 installation via yum, and about a week after putting them into production I’m getting the follow reports in logwatch:


WARNING:  Kernel Errors Present
   audit(1144312701.146:806): avc:  denied  { ioctl } for  pid=7589 comm="wget" name="error_log" dev=dm-0 in...:  1 Time(s)
   audit(1144312701.146:807): avc:  denied  { ioctl } for  pid=7589 comm="wget" name="error_log" dev=dm-0 in...:  1 Time(s)
   audit(1144312722.110:808): avc:  denied  { ioctl } for  pid=7595 comm="perl" name="error_log" dev=dm-0 in...:  1 Time(s)
   audit(1144312743.210:809): avc:  denied  { ioctl } for  pid=7601 comm="perl" name="error_log" dev=dm-0 in...:  1 Time(s)
   audit(1144312747.159:810): avc:  denied  { ioctl } for  pid=7603 comm="perl" name="error_log" dev=dm-0 in...:  1 Time(s)

Was this caused by a recent update?  My tripwire logs don’t show anything funny going on, and otherwise the server hasn’t changed a bit.  Any help, insight, or RTFM's would be greatly appreciated. :) 

Thanks,

Toby


More information about the CentOS mailing list