On 07/17/2012 11:42 AM, m.roth at 5-cent.us wrote: > Patrick Lists wrote: >> On 17-07-12 19:38, m.roth at 5-cent.us wrote: >>> Before I roll it out to users for their workstations, I updated my own >>> system to 6.3, just did an update a few minutes ago, then rebooted. Came >>> up... but when I went to use my PIV card for credentials to certain >>> other machines, it didn't read the card. I found that pcscd was not > running - >>> when I did a service restart, it said "failed" on shutdown, then ok on >>> startup. chkconfig --list tells me it's supposed to be on. >>> >>> Now, I'm pretty sure I saw this behavior with motion on a server I did a >>> week or so ago, also: same thing, chkconfig says it should be on, but it >>> was never turned up. This is a reboot after update, not a new install, >>> and selinux is permissive in both cases. >>> >>> Has anyone else seen this, with optional services? >> There was also an issue with PostgreSQL not starting after installing >> the latest updates. The culprit seems to be the sudo update: >> >> https://bugzilla.redhat.com/show_bug.cgi?id=818585 >> >> So try this first: >> >> # restorecon /etc/nsswitch.conf >> >> Then try to start the pcscd service again to see if that fixes it. > I can do that, but see no reason to. As I stated above, selinux is in > permissive mode, and I did a yum update, which updated > Jul 16 14:36:59 Updated: dracut-004-284.el6_3.noarch > Jul 16 14:37:00 Updated: dracut-kernel-004-284.el6_3.noarch > Jul 17 13:27:40 Updated: psacct-6.3.2-63.el6_3.3.x86_64 > Jul 17 13:27:41 Updated: sudo-1.7.4p5-12.el6_3.x86_64 > > which includes the sudo update, though I note from rpm -qi that it was > built at 12:31 yesterday. Johnny, is this the one that was just announced > in the announcement email of an hour or so ago? Permissive mode or not this update also broke NFS automount of home directories on our 5.8 systems. The restorecon fix works for this purpose for us. Before the update... # egrep -v "^#" /etc/selinux/config SELINUX=permissive SELINUXTYPE=targeted SETLOCALDEFS=0 # rpm -qa sudo sudo-1.7.2p1-13.el5 # ls -Z /etc/nsswitch.conf -rw-r--r-- root root system_u:object_r:etc_t /etc/nsswitch.conf After the update... # rpm -qa sudo sudo-1.7.2p1-14.el5_8 # ls -Z /etc/nsswitch.conf -rw-r--r-- root root system_u:object_r:rpm_script_tmp_t /etc/nsswitch.conf >From /var/log/messages when attempting to access automounted home directory... Jul 18 07:08:40 ... automount[2580]: nsswitch_parse:173: couldn't open /etc/nsswitch.conf Jul 18 07:08:40 ... automount[2580]: lookup_nss_mount: can't to read name service switch config. After the fix... # restorecon /etc/nsswitch.conf && service autofs restart Stopping automount: [ OK ] Starting automount: [ OK ] # ls -Z /etc/nsswitch.conf -rw-r--r-- root root system_u:object_r:etc_t /etc/nsswitch.conf Trevor