- 论坛徽章:
- 0
|
用的是fedora9 倒是没发现对系统有什么影响,什么都用的挺正常的。
用SEtroubleshoot检查了一下audit.log文件 出来这么堆东西 只看出来是因为/system/.aaa这个文件导致了什么东西。。具体什么的没看懂。
- Summary
- SELinux is preventing access to files with the default label, default_t.
- Detailed Description
- SELinux permission checks on files labeled default_t are being denied. These files/directories have the default label on them. This can indicate a labeling problem, especially if the files being referred to are not top level directories. Any files/directories under standard system directories, /usr, /var. /dev, /tmp, ..., should not be labeled with the default label. The default label is for files/directories which do not have a label on a parent directory. So if you create a new directory in / you might legitimately get this label.
- Allowing Access
- If you want a confined domain to use these files you will probably need to relabel the file/directory with chcon. In some cases it is just easier to relabel the system, to relabel execute: "touch /.autorelabel; reboot"
- Additional Information
- Source Context: unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023
- Target Context: unconfined_u:object_r:default_t:s0Target
- Objects: /system/.aaa [ file ]
- Source: passwdSource
- Path: /usr/bin/passwd
- Port: <Unknown>
- Host: <Unknown>
- Source RPM Packages: passwd-0.75-2.fc9
- Target RPM Packages:
- Policy RPM: selinux-policy-3.3.1-42.fc9Selinux Enabled: True
- Policy Type: targeted
- MLS Enabled: True
- Enforcing Mode: Enforcing
- Plugin Name: default
- Host Name: localhost.localdomain
- Platform: Linux localhost.localdomain 2.6.25-14.fc9.i686 #1 SMP Thu May 1 06:28:41 EDT 2008 i686 athlon
- Alert Count: 2F
- irst Seen: Mon 06 Oct 2008 10:08:51 PM EST
- Last Seen: Thu 09 Oct 2008 07:34:00 PM ESTLocal ID: 58886558-4fab-4123-89fb-bddaaf3f979c
- Line Numbers: 11, 12, 111, 112
- Raw Audit Messages:
- type=AVC msg=audit(1223544840.372:14): avc: denied { read } for pid=2334 comm="passwd" path="/system/.aaa" dev=dm-0 ino=66090 scontext=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:default_t:s0 tclass=file
- type=SYSCALL msg=audit(1223544840.372:14): arch=40000003 syscall=11 success=yes exit=0 a0=860a410 a1=860a4e8 a2=860a258 a3=0 items=0 ppid=2332 pid=2334 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts1 ses=1 comm="passwd" exe="/usr/bin/passwd" subj=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 key=(null)
复制代码
谢谢了 |
|