[CentOS] SELinux is preventing /usr/bin/chcon "mac_admin" access
Daniel J Walsh
dwalsh at redhat.com
Tue Dec 20 19:42:19 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 12/20/2011 07:33 PM, James B. Byrne wrote:
>
> On Tue, December 20, 2011 13:40, Daniel J Walsh wrote:
>
>>>
>>
>> grep -R chcon /etc/rc.d
>>
>> Would be an easier way to do this...
>>
>> ps -eZ | grep initrc
>>
> # grep -R chcon /etc/rc.d # ps -eZ | grep initrc
> system_u:system_r:initrc_t:s0 1211 ? 00:00:01
> miniserv.pl
>
> No chcon found in /etc/rc.d
>
> miniserv.pl is the Webmin httpd server. Is this causing the
> problem?
>
It could be. Basically a program running as initrc_t executed the
chcon command, probably mistakenly thinking it is fixing an SELinux
problem. but it is using an invalid context.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk7w5RUACgkQrlYvE4MpobPNswCfdN49kgA+7MLzHSqSMthvmHmT
PdgAn3Wdp96y7XxgYKP/ZQjeN9i52tYe
=mYwz
-----END PGP SIGNATURE-----
More information about the CentOS
mailing list