On 08/14/2010 10:06 AM, Arthur Dent wrote:
And this is what audit2allow makes of them...
require {
type mlogc_t;
}
#============= mlogc_t ==============
files_delete_root_dir_entry(mlogc_t)
files_delete_tmp_dir_entry(mlogc_t)
miscfiles_manage_cert_files(mlogc_t)
Should I add these to the above policy, or is there some other way?
Thanks in advance for any help or suggestions...
Mark
There are some issues:
1. I would go here:
https://lists.sourceforge.net/lists/listinfo/mod-security-users and ask
if it is normal that mlogc writes to certificate databases. Its trying
to write to files like: cert9.db, key4.db.
2. You have a partition mounted that is not labelled properly. It is:
/dev/sda6. Where is that mounted?
3. Looks like mlogc wants to maintain objects in /tmp. However your logs
do not display what kind of objects ( e.g. it is incomplete )
You may have removed log entries that were no duplicates.
--
selinux mailing list
selinux(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/selinux