[CentOS] SELinux targeted - named, portmap and syslogd errors

Leonardo Vilela Pinheiro

leopinheiro at gmail.com
Fri Aug 25 16:02:21 UTC 2006


Yesterday I activated SELinux in targeted mode, then I rebooted and started
receiving some error messages in the system services initialization:

======================================================================
audit(1156518721.252:2): avc:  denied  { read } for  pid=2223 comm="syslogd"
name="libc-2.3.4.so" dev=dm-0 ino=50441 scontext=user_u:system_r:syslogd_t
tcontext=system_u:object_r:file_t tclass=file

audit(1156518721.280:5): avc:  denied  { append } for  pid=2224 comm="
syslogd" name="messages" dev=dm-3 ino=38 scontext=user_u:system_r:syslogd_t
tcontext=system_u:object_r:file_t tclass=file

audit(1156518721.757:7): avc:  denied  { read } for  pid=2246 comm="portmap"
name="libnsl-2.3.4.so" dev=dm-0 ino=48836 scontext=user_u:system_r:portmap_t
tcontext=system_u:object_r:file_t tclass=file

audit(1156518728.009:10): avc:  denied  { read } for  pid=2411 comm="named"
name="liblwres.so.1.1.2" dev=dm-0 ino=462795
scontext=user_u:system_r:named_t tcontext=system_u:object_r:file_t
tclass=file

audit(1156518728.032:13): avc:  denied  { read } for  pid=2411 comm="named"
name="libgssapi_krb5.so.2" dev=dm-0 ino=459694
scontext=user_u:system_r:named_t tcontext=system_u:object_r:file_t
tclass=lnk_file
======================================================================

The SELinux policies in use are the default from Centos packages (I haven't
changed anything). Surely this bind, portmap and syslogd packages came from
Centos base or update.

bind-chroot is not installed. Bind seems to be working fine - as a cache and
as a nameserver - even with those errors.

Syslog also *seems* to be ok, as it keeps logging things on /var/log/, even
in /var/log/messages.

I don't use Portmap, but I have left it activated. Anyways, iptables blocks
it.

Any ideas on what is causing the problems and how to solve it ?
Thanks
-- 
Vilela
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20060825/71e9275f/attachment.html>


More information about the CentOS mailing list