On Wed, 2006-06-07 at 11:36 -0400, Tony Schreiner wrote: > audit2allow </var/log/messages If you are tuning the policy audit2allow -d -l Is very handy, it uses dmesg output, and only analyses SELinux-related message from after the last policy load. The SELinux Guide also provides useful information: http://www.centos.org/docs/4/html/rhel-selg-en-4/ -- Daniel