> Did you define my_postfixauth_private_t yourself? And if so, why? > > All my sockets inside /var/spool/postfix/private/ have the type > postfix_private_t. I don't see why you think a non-standard type would fit. > And postfix_private_t gets automatically assigned and a custom fcontext > should not be necessary. > > Alexander > I just gave up in the end and did what you're (apparently) not supposed to do ..... fgrep dovecot_t /var/log/audit/audit.log | audit2allow The output moaned about base types, but googling that just led me into the murky depths of even more confusing selinux wizardry. So I gave up trying to fix that too.... by that point I had wasted three days trying to get Dovecot working and wasn't about to waste another three figuring how to get around the "base types" complaints. I love the concept of selinux but boy do I wish the developers wouldn't have made it quite so obscure and complicated to work with !!