[lug] hald not starting

gordongoldin at aim.com gordongoldin at aim.com
Wed Mar 12 11:41:11 MDT 2008 

 


Still getting the same thing.


I'm on FC7 - it's hard to believe it's a "bug" - others had to have seen this.




?



Did:



restorecon -v /usr/sbin/hald



?



grep hald /var/log/audit/audit.log | audit2allow -M myhald 



semodule -i myhald.pp



?



Still get:



SELinux is preventing /usr/libexec/hald-generate-fdi-cache
(hald_t) "write" to hald (var_t).



?



SELinux denied access requested by
/usr/libexec/hald-generate-fdi-cache. It is not expected that this access is
required by /usr/libexec/hald-generate-fdi-cache and this access may signal an
intrusion attempt. It is also possible that the specific version or
configuration of the application is causing it to require additional access.



?



Sometimes labeling problems can cause SELinux denials. You
could try to restore the default system file context for hald, restorecon -v
hald If this does not work, there is currently no automatic way to allow this
access. Instead, you can generate a local policy module to allow this access -
see FAQ Or you can disable SELinux protection altogether. Disabling SELinux
protection is not recommended. Please file a bug report against this package.



?



Source Context:??????????? ??????????? ?system_u:system_r:hald_t



Target Context: ??????????? ???? ??? ??? system_u:object_r:var_t



Target Objects: ??????????? ???? ????hald [ dir ]



Affected RPM Packages:????????? ?hal-0.5.9-8.fc7
[application]



Policy RPM:???? ??????????? ??????????? selinux-policy-2.6.4-70.fc7



Selinux Enabled:?????????? ??????????? ?True



TruePolicy Type:????????? ??????????? ?targeted



MLS Enabled:? ??????????? ??????????? True



TrueEnforcing Mode:??? ??????????? ?Enforcing



EnforcingPlugin Name:? ?plugins.catchall_file



Host Name:????? ??????????? ?hotswap



Platform: ??? ??? ??? ??? ??? ??? Linux hotswap 2.6.23.15-80.fc7 #1 SMP Sun Feb 10
17:29:10 EST 2008 i686 i686



Alert Count:????? ??????????? ?10



First Seen:??????? ??????????? ?Wed 12 Sep 2007 05:39:46 AM MDT



Last Seen:??????? ??????????? ?Wed 12 Mar 2008 09:54:27 AM MD



TLocal ID:??????? ??????????? ?1df9330a-a0b3-4e95-8405-2d7e8c1b9d03



Line Numbers:? ??????????? ?



Raw Audit Messages :



avc: denied { write } for comm="hald-generate-f"
dev=sda3 egid=0 euid=0 exe="/usr/libexec/hald-generate-fdi-cache"
exit=-13 fsgid=0 fsuid=0 gid=0 items=0 name="hald" pid=2195
scontext=system_u:system_r:hald_t:s0 sgid=0 subj=system_u:system_r:hald_t:s0
suid=0 tclass=dir tcontext=system_u:object_r:var_t:s0 tty=(none) uid=0




 



Gordon Golding
CINC


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20080312/cf4227f2/attachment.html>

More information about the LUG mailing list