请帮忙看看这段话是什么问题？

max44

用的是fedora9 倒是没发现对系统有什么影响，什么都用的挺正常的。
用SEtroubleshoot检查了一下audit.log文件 出来这么堆东西 只看出来是因为/system/.aaa这个文件导致了什么东西。。具体什么的没看懂。

1. Summary
   
2. SELinux is preventing access to files with the default label, default_t.
   
3. 
   
4. Detailed Description
   
5. SELinux permission checks on files labeled default_t are being denied. These files/directories have the default label on them. This can indicate a labeling problem, especially if the files being referred to are not top level directories. Any files/directories under standard system directories, /usr, /var. /dev, /tmp, ..., should not be labeled with the default label. The default label is for files/directories which do not have a label on a parent directory. So if you create a new directory in / you might legitimately get this label.
   
6. 
   
7. Allowing Access
   
8. If you want a confined domain to use these files you will probably need to relabel the file/directory with chcon. In some cases it is just easier to relabel the system, to relabel execute: "touch /.autorelabel; reboot"
   
9. 
   
10. Additional Information
    
11. Source Context:  unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023
    
12. Target Context:  unconfined_u:object_r:default_t:s0Target
    
13. Objects:  /system/.aaa [ file ]
    
14. Source:  passwdSource
    
15. Path:  /usr/bin/passwd
    
16. Port:  <Unknown>
    
17. Host:  <Unknown>
    
18. Source RPM Packages:  passwd-0.75-2.fc9
    
19. Target RPM Packages:  
    
20. Policy RPM:  selinux-policy-3.3.1-42.fc9Selinux Enabled:  True
    
21. Policy Type:  targeted
    
22. MLS Enabled:  True
    
23. Enforcing Mode:  Enforcing
    
24. Plugin Name:  default
    
25. Host Name:  localhost.localdomain
    
26. Platform:  Linux localhost.localdomain 2.6.25-14.fc9.i686 #1 SMP Thu May 1 06:28:41 EDT 2008 i686 athlon
    
27. Alert Count:  2F
    
28. irst Seen:  Mon 06 Oct 2008 10:08:51 PM EST
    
29. Last Seen:  Thu 09 Oct 2008 07:34:00 PM ESTLocal ID:  58886558-4fab-4123-89fb-bddaaf3f979c
    
30. Line Numbers:  11, 12, 111, 112
    
31. 
    
32. Raw Audit Messages:
    
33. 
    
34. type=AVC msg=audit(1223544840.372:14): avc: denied { read } for pid=2334 comm="passwd" path="/system/.aaa" dev=dm-0 ino=66090 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:default_t:s0 tclass=file
    
35. 
    
36. type=SYSCALL msg=audit(1223544840.372:14): arch=40000003 syscall=11 success=yes exit=0 a0=860a410 a1=860a4e8 a2=860a258 a3=0 items=0 ppid=2332 pid=2334 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1 ses=1 comm="passwd" exe="/usr/bin/passwd" subj=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 key=(null)
    

复制代码

谢谢了

sakulagi

/system/.aaa

这是啥文件。楼主自己生成的？

max44

额 不是我生成的。。。是一个破坏程序 拿来实际学习维护LINUX用的
运行了之后完全没发现哪里出了问题。。。虽然上面提示说是/directories受到了影响 怎么解决也给了 不过我比较菜 没怎么看懂这个有什么实际的影响和为什么会这样

[ 本帖最后由 max44 于 2008-10-8 19:09 编辑 ]

sakulagi

没事，只是提示你这个文件有危险性