1 |
On Thu, 2008-03-13 at 17:01 +0100, Björn Fahller wrote: |
2 |
> On Thursday 13 March 2008 16.27.51 Chris PeBenito wrote: |
3 |
> > On Thu, 2008-03-13 at 15:26 +0100, Björn Fahller wrote: |
4 |
> |
5 |
> > > Adding 977216k swap on /dev/hda1. Priority:-1 extents:1 across:977216k |
6 |
> > > audit(1205311359.150:6): avc: denied { write } for pid=2470 |
7 |
> > > comm="runscript.sh" name="resolv.conf" dev=hda2 ino=46223216 |
8 |
> > > scontext=system_u:system_r:initrc_t tcontext=system_u:object_r:net_conf_t |
9 |
> > > tclass=file |
10 |
> > > audit(1205311359.154:7): avc: denied { setattr } for pid=2525 |
11 |
> > > comm="chmod" name="resolv.conf" dev=hda2 ino=46223216 |
12 |
> > > scontext=system_u:system_r:initrc_t tcontext=system_u:object_r:net_conf_t |
13 |
> > > tclass=file |
14 |
> > |
15 |
> > Do you use net-dns/resolvconf-gentoo? |
16 |
> |
17 |
> No. Would it help? |
18 |
|
19 |
It was the only thing I could find that chmod'ed resolv.conf. I guess |
20 |
it requires more investigation. |
21 |
|
22 |
> > > eth0: link up, 100Mbps, full-duplex |
23 |
> > > audit(1205311366.898:11): avc: denied { nlmsg_write } for pid=3576 |
24 |
> > > comm="dhcpcd" scontext=system_u:system_r:dhcpc_t |
25 |
> > |
26 |
> > I'll have to do some investigation on this one. |
27 |
> |
28 |
> |
29 |
> If you use VirtualBox, I can give you the experiment machine to look into. |
30 |
|
31 |
As a personal policy, I don't log on/connect to other peoples machines. |
32 |
However, after a litle more thought, its likely ok. Its probably from |
33 |
setting up the routing tables, which would be expected. |
34 |
|
35 |
-- |
36 |
Chris PeBenito |
37 |
<pebenito@g.o> |
38 |
Developer, |
39 |
Hardened Gentoo Linux |
40 |
|
41 |
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 |
42 |
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 |