Hi,

On a fully updated CentOS 5.7 box I get the following AVC

Summary:

SELinux is preventing unix_update (updpwd_t) "getattr" to / (fs_t).

Detailed Description:

SELinux denied access requested by unix_update. It is not expected that this

access is required by unix_update and this access may signal an intrusion

attempt. It is also possible that the specific version or configuration of the

application is causing it to require additional access.

Allowing Access:

You can generate a local policy module to allow this access - see FAQ

(http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable

SELinux protection altogether. Disabling SELinux protection is not recommended.

Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi)

against this package.

Additional Information:

Source Context system_u:system_r:updpwd_t

Target Context system_u:object_r:fs_t

Target Objects / [ filesystem ]

Source unix_update

Source Path <Unknown>

Port <Unknown>

Host a.b.c.d

Source RPM Packages

Target RPM Packages filesystem-2.4.0-3.el5.centos

Policy RPM selinux-policy-2.4.6-316.el5

Selinux Enabled True

Policy Type targeted

MLS Enabled True

Enforcing Mode Enforcing

Plugin Name catchall

Host Name a.b.c.d

Platform Linuxl a.b.c.d 2.6.18-274.3.1.el5

#1 SMP Tue Sep 6 20:13:52 EDT 2011 x86_64 x86_64

Alert Count 11

First Seen Fri Feb 25 15:39:33 2011

Last Seen Mon Sep 26 14:18:54 2011

Local ID 275eef01-114a-419b-9df0-4bb81932bc5e

Line Numbers

Raw Audit Messages

host=a.b.c.d type=AVC msg=audit(1317043134.620:3620): avc: denied { getattr } for pid=21354 comm="unix_update" name="/" dev=sda5 ino=2 scontext=system_u:system_r:updpwd_t:s0 tcontext=system_u:object_r:fs_t:s0 tclass=filesystem

I can generate a local policy module.

Thanks,

Tony