2007/6/11, piotreek <piotreek23(a)gmail.com>:
2007/6/11, Daniel J Walsh <dwalsh(a)redhat.com>:
>
> piotreek wrote:
> > Hi guys i found some strange messages in my logs. It seams that
> > selinux is blocking a dhcp an Iptables.
> > I found similar post on group about DHCP but my messages are
> > different.I am using FC7 latest policy update didn't resolve the
> problem.
> > P.S I am using firestater as my firewall.
> I believe you will need to write custom policy to make this work. You
> can simply add these rules using audit2allow.
>
> # grep dhcpc /var/log/audit/audit.log | audit2allow -M mydhcpc
>
> # semodule -i mydhcpc.pp
>
> Having dhcpc allowed to turn on/off firewall rules is of debatable
> security risk.
THX but i found what causing problem. Firestarter was causing this
messages. After uninstall i i have writ-ed my own Iptables script. And
strange messages disappeared.