On 09/16/2014 10:50 AM, Markus Steinborn wrote:
> Hi Daniel,
>
> Daniel J Walsh wrote:
>> What AVC's is SELinux giving you?
> Policy has been "enforcing" - and I see the folloqwing AVCs at the end
> of my audit log - but those repeated several times:
>
> type=AVC msg=audit(1410628837.928:422): avc: denied { connectto }
> for pid=2330 comm="smbd" path="/run/samba/winbindd/pipe"
> scontext=system_u:system_r:smbd_t:s0
> tcontext=system_u:system_r:init_t:s0 tclass=unix_stream_socket
> type=AVC msg=audit(1410628852.301:430): avc: denied { connectto }
> for pid=2392 comm="smbd" path="/run/samba/ncalrpc/np/netlogon"
> scontext=system_u:system_r:smbd_t:s0
> tcontext=system_u:system_r:init_t:s0 tclass=unix_stream_socket
>
This looks like you have something running as init_t that is listening
on "/run/samba/winbindd/pipe"
ps -eZ | grep init_t
>
> Greetings
>
> Markus
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos