Re[6]: [gentoo-hardened] getting started.. - gentoo-hardened

From:	"Christian Schäfer" <caefer@××××××××××.net>
To:	Chris PeBenito <pebenito@g.o>
Cc:	Hardened Gentoo Mail List <gentoo-hardened@g.o>
Subject:	Re[6]: [gentoo-hardened] getting started..
Date:	Sat, 16 Aug 2003 18:11:49
Message-Id:	`1991167829.20030816201021@krachstoff.net`
In Reply to:	Re: Re[4]: [gentoo-hardened] getting started.. by Chris PeBenito

1

sorry, forgot the output..

2

3

here it is:

4

5

Linux version 2.4.20-hardened-r4 (root@r00t) (gcc version 3.2.3 20030422 (Gentoo Linux 1.4 3.2.3-r1, propolice)) #3 SMP Sat Aug 16 18:14:40 CEST 2003

6

BIOS-provided physical RAM map:

7

 BIOS-e820: 0000000000000000 - 00000000000a0000 (usable)

8

 BIOS-e820: 00000000000f0000 - 0000000000100000 (reserved)

9

 BIOS-e820: 0000000000100000 - 0000000008000000 (usable)

10

 BIOS-e820: 00000000ffff0000 - 0000000100000000 (reserved)

11

128MB LOWMEM available.

12

On node 0 totalpages: 32768

13

zone(0): 4096 pages.

14

zone(1): 28672 pages.

15

zone(2): 0 pages.

16

Kernel command line: root=/dev/hda2 vga=791

17

No local APIC present or hardware disabled

18

Initializing CPU#0

19

Detected 233.867 MHz processor.

20

Console: colour VGA+ 80x25

21

Calibrating delay loop... 465.30 BogoMIPS

22

Memory: 126464k/131072k available (1596k kernel code, 4224k reserved, -2208k data, 264k init, 0k highmem)

23

Security Scaffold v1.0.0 initialized

24

SELinux:  Initializing.

25

SELinux:  Starting in permissive mode

26

Dentry cache hash table entries: 16384 (order: 5, 131072 bytes)

27

Inode cache hash table entries: 8192 (order: 4, 65536 bytes)

28

Mount-cache hash table entries: 2048 (order: 2, 16384 bytes)

29

Buffer-cache hash table entries: 8192 (order: 3, 32768 bytes)

30

Page-cache hash table entries: 32768 (order: 5, 131072 bytes)

31

Intel Pentium with F0 0F bug - workaround enabled.

32

CPU:     After generic, caps: 008001bf 00000000 00000000 00000000

33

CPU:             Common caps: 008001bf 00000000 00000000 00000000

34

Checking 'hlt' instruction... OK.

35

POSIX conformance testing by UNIFIX

36

CPU:     After generic, caps: 008001bf 00000000 00000000 00000000

37

CPU:             Common caps: 008001bf 00000000 00000000 00000000

38

CPU0: Intel Pentium MMX stepping 03

39

per-CPU timeslice cutoff: 160.32 usecs.

40

task migration cache decay timeout: 10 msecs.

41

SMP motherboard not detected.

42

Local APIC not detected. Using dummy APIC emulation.

43

migration_task 0 on cpu=0

44

PCI: PCI BIOS revision 2.10 entry at 0xfb550, last bus=0

45

PCI: Using configuration type 1

46

PCI: Probing PCI hardware

47

Limiting direct PCI/PCI transfers.

48

Linux NET4.0 for Linux 2.4

49

Based upon Swansea University Computer Society NET3.039

50

Initializing RT netlink socket

51

Starting kswapd

52

devfs: v1.12c (20020818) Richard Gooch (rgooch@××××××××××.au)

53

devfs: boot_options: 0x1

54

Installing knfsd (copyright (C) 1996 okir@×××××××××.de).

55

There is already a security framework initialized, register_security failed.

56

Failure registering capabilities with the kernel

57

selinux_register_security:  Registering secondary module capability

58

Capability LSM initialized

59

pty: 256 Unix98 ptys configured

60

Serial driver version 5.05c (2001-07-08) with MANY_PORTS SHARE_IRQ SERIAL_PCI enabled

61

ttyS00 at 0x03f8 (irq = 4) is a 16550A

62

ttyS01 at 0x02f8 (irq = 3) is a 16550A

63

Uniform Multi-Platform E-IDE driver Revision: 6.31

64

ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx

65

PIIX4: IDE controller on PCI bus 00 dev 39

66

PIIX4: chipset revision 1

67

PIIX4: not 100% native mode: will probe irqs later

68

    ide0: BM-DMA at 0xf000-0xf007, BIOS settings: hda:pio, hdb:pio

69

    ide1: BM-DMA at 0xf008-0xf00f, BIOS settings: hdc:pio, hdd:pio

70

hda: ST3630A, ATA DISK drive

71

hdb: ATAPI CDROM, ATAPI CD/DVD-ROM drive

72

hdc: ST34321A, ATA DISK drive

73

ide0 at 0x1f0-0x1f7,0x3f6 on irq 14

74

ide1 at 0x170-0x177,0x376 on irq 15

75

blk: queue c01876c4, I/O limit 4095Mb (mask 0xffffffff)

76

hda: 1232784 sectors (631 MB) w/120KiB Cache, CHS=611/32/63, DMA

77

blk: queue c0187a28, I/O limit 4095Mb (mask 0xffffffff)

78

hdc: 8404830 sectors (4303 MB) w/128KiB Cache, CHS=8894/15/63, UDMA(33)

79

hdb: ATAPI 40X CD-ROM drive, 128kB Cache, UDMA(33)

80

Uniform CD-ROM driver Revision: 3.12

81

Partition check:

82

 /dev/ide/host0/bus0/target0/lun0: p1 p2

83

 /dev/ide/host0/bus1/target0/lun0: p1 p2 p3 p4 < p5 p6 >

84

Floppy drive(s): fd0 is 1.44M

85

FDC 0 is a post-1991 82077

86

loop: loaded (max 8 devices)

87

PPP generic driver version 2.4.2

88

8139too Fast Ethernet driver 0.9.26

89

eth0: RealTek RTL8139 Fast Ethernet at 0xc8804000, 00:30:84:28:e3:12, IRQ 9

90

eth0:  Identified 8139 chip type 'RTL-8139C'

91

eth1: RealTek RTL8139 Fast Ethernet at 0xc8806000, 00:e0:7d:82:48:3c, IRQ 12

92

eth1:  Identified 8139 chip type 'RTL-8139B'

93

Linux agpgart interface v0.99 (c) Jeff Hartmann

94

agpgart: Maximum main memory to use for agp memory: 96M

95

agpgart: no supported devices found.

96

SCSI subsystem driver Revision: 1.00

97

scsi0 : AM53/79C974 PCscsi driver rev. 0.5; host I/O address: 0x6700; irq: 11

98

99

NET4: Linux TCP/IP 1.0 for NET4.0

100

IP Protocols: ICMP, UDP, TCP, IGMP

101

IP: routing cache hash table of 1024 buckets, 8Kbytes

102

TCP: Hash tables configured (established 8192 bind 8192)

103

NET4: Unix domain sockets 1.0/SMP for Linux NET4.0.

104

reiserfs: checking transaction log (device 03:02) ...

105

Using r5 hash to sort names

106

ReiserFS version 3.6.25

107

VFS: Mounted root (reiserfs filesystem) readonly.

108

SELinux:  Completing initialization.

109

security:  loading policy configuration from /etc/security/selinux/policy.12

110

security:  3 users, 6 roles, 338 types

111

security:  29 classes, 22774 rules

112

SELinux: initialized (dev 03:02, type reiserfs), uses PSIDs

113

SELinux: initialized (dev 00:08, type devpts), uses transition SIDs

114

SELinux: initialized (dev 00:07, type devfs), uses genfs_contexts

115

SELinux: initialized (dev 00:06, type binfmt_misc), not configured for labeling

116

SELinux: initialized (dev 00:05, type pipefs), uses task SIDs

117

SELinux: initialized (dev 00:04, type tmpfs), uses transition SIDs

118

SELinux: initialized (dev 00:03, type sockfs), uses task SIDs

119

SELinux: initialized (dev 00:02, type proc), uses genfs_contexts

120

SELinux: initialized (dev 00:01, type bdev), not configured for labeling

121

SELinux: initialized (dev 00:00, type rootfs), not configured for labeling

122

Mounted devfs on /dev

123

Freeing unused kernel memory: 264k freed

124

Adding Swap: 499864k swap-space (priority -1)

125

126

avc:  denied  { getattr } for  pid=163 exe=/sbin/reiserfsck path=/random dev=00:07 ino=10 scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file

127

128

avc:  denied  { getattr } for  pid=163 exe=/sbin/reiserfsck path=/ppp dev=00:07 ino=399 scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file

129

130

avc:  denied  { add_name } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=dir

131

132

avc:  denied  { create } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file

133

134

avc:  denied  { getattr } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file

135

136

avc:  denied  { write } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file

137

138

avc:  denied  { read } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file

139

140

avc:  denied  { remove_name } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=dir

141

142

avc:  denied  { unlink } for  pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file

143

144

avc:  denied  { getattr } for  pid=263 exe=/sbin/reiserfsck scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:proc_t tclass=filesystem

145

reiserfs: checking transaction log (device 16:01) ...

146

Using r5 hash to sort names

147

ReiserFS version 3.6.25

148

SELinux: initialized (dev 16:01, type reiserfs), uses PSIDs

149

reiserfs: checking transaction log (device 16:02) ...

150

Using r5 hash to sort names

151

ReiserFS version 3.6.25

152

SELinux: initialized (dev 16:02, type reiserfs), uses PSIDs

153

reiserfs: checking transaction log (device 16:03) ...

154

Using r5 hash to sort names

155

ReiserFS version 3.6.25

156

SELinux: initialized (dev 16:03, type reiserfs), uses PSIDs

157

reiserfs: checking transaction log (device 16:06) ...

158

Using r5 hash to sort names

159

ReiserFS version 3.6.25

160

SELinux: initialized (dev 16:06, type reiserfs), uses PSIDs

161

SELinux: initialized (dev 00:09, type tmpfs), uses transition SIDs

162

eth0: Setting 100mbps full-duplex based on auto-negotiated partner ability 45e1.

163

164

avc:  denied  { append } for  pid=757 exe=/usr/sbin/syslog-ng path=/vc/12 dev=00:07 ino=26 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tty_device_t tclass=chr_file

165

166

avc:  denied  { setattr } for  pid=757 exe=/usr/sbin/syslog-ng path=/vc/12 dev=00:07 ino=26 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tty_device_t tclass=chr_file

167

168

avc:  denied  { read } for  pid=817 exe=/bin/bash path=/root dev=03:02 ino=3872 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_dir_t tclass=dir

169

170

avc:  denied  { write } for  pid=823 exe=/bin/bash path=/root/dmesg.txt dev=03:02 ino=39881 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_t tclass=file

171

172

avc:  denied  { setattr } for  pid=823 exe=/bin/bash path=/root/dmesg.txt dev=03:02 ino=39881 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_t tclass=file

173

174

175

gruss

176

/Christian                   mailto:caefer@××××××××××.net

177

178

---

179

180

181

I propose that the following character sequence for joke markers:

182

183

:-)

184

185

                             19-Sep-82 11:44    Scott E  Fahlman

186

187

188

--

189

gentoo-hardened@g.o mailing list

Gentoo Archives: gentoo-hardened

Replies

1	sorry, forgot the output..
2
3	here it is:
4
5	Linux version 2.4.20-hardened-r4 (root@r00t) (gcc version 3.2.3 20030422 (Gentoo Linux 1.4 3.2.3-r1, propolice)) #3 SMP Sat Aug 16 18:14:40 CEST 2003
6	BIOS-provided physical RAM map:
7	BIOS-e820: 0000000000000000 - 00000000000a0000 (usable)
8	BIOS-e820: 00000000000f0000 - 0000000000100000 (reserved)
9	BIOS-e820: 0000000000100000 - 0000000008000000 (usable)
10	BIOS-e820: 00000000ffff0000 - 0000000100000000 (reserved)
11	128MB LOWMEM available.
12	On node 0 totalpages: 32768
13	zone(0): 4096 pages.
14	zone(1): 28672 pages.
15	zone(2): 0 pages.
16	Kernel command line: root=/dev/hda2 vga=791
17	No local APIC present or hardware disabled
18	Initializing CPU#0
19	Detected 233.867 MHz processor.
20	Console: colour VGA+ 80x25
21	Calibrating delay loop... 465.30 BogoMIPS
22	Memory: 126464k/131072k available (1596k kernel code, 4224k reserved, -2208k data, 264k init, 0k highmem)
23	Security Scaffold v1.0.0 initialized
24	SELinux: Initializing.
25	SELinux: Starting in permissive mode
26	Dentry cache hash table entries: 16384 (order: 5, 131072 bytes)
27	Inode cache hash table entries: 8192 (order: 4, 65536 bytes)
28	Mount-cache hash table entries: 2048 (order: 2, 16384 bytes)
29	Buffer-cache hash table entries: 8192 (order: 3, 32768 bytes)
30	Page-cache hash table entries: 32768 (order: 5, 131072 bytes)
31	Intel Pentium with F0 0F bug - workaround enabled.
32	CPU: After generic, caps: 008001bf 00000000 00000000 00000000
33	CPU: Common caps: 008001bf 00000000 00000000 00000000
34	Checking 'hlt' instruction... OK.
35	POSIX conformance testing by UNIFIX
36	CPU: After generic, caps: 008001bf 00000000 00000000 00000000
37	CPU: Common caps: 008001bf 00000000 00000000 00000000
38	CPU0: Intel Pentium MMX stepping 03
39	per-CPU timeslice cutoff: 160.32 usecs.
40	task migration cache decay timeout: 10 msecs.
41	SMP motherboard not detected.
42	Local APIC not detected. Using dummy APIC emulation.
43	migration_task 0 on cpu=0
44	PCI: PCI BIOS revision 2.10 entry at 0xfb550, last bus=0
45	PCI: Using configuration type 1
46	PCI: Probing PCI hardware
47	Limiting direct PCI/PCI transfers.
48	Linux NET4.0 for Linux 2.4
49	Based upon Swansea University Computer Society NET3.039
50	Initializing RT netlink socket
51	Starting kswapd
52	devfs: v1.12c (20020818) Richard Gooch (rgooch@××××××××××.au)
53	devfs: boot_options: 0x1
54	Installing knfsd (copyright (C) 1996 okir@×××××××××.de).
55	There is already a security framework initialized, register_security failed.
56	Failure registering capabilities with the kernel
57	selinux_register_security: Registering secondary module capability
58	Capability LSM initialized
59	pty: 256 Unix98 ptys configured
60	Serial driver version 5.05c (2001-07-08) with MANY_PORTS SHARE_IRQ SERIAL_PCI enabled
61	ttyS00 at 0x03f8 (irq = 4) is a 16550A
62	ttyS01 at 0x02f8 (irq = 3) is a 16550A
63	Uniform Multi-Platform E-IDE driver Revision: 6.31
64	ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx
65	PIIX4: IDE controller on PCI bus 00 dev 39
66	PIIX4: chipset revision 1
67	PIIX4: not 100% native mode: will probe irqs later
68	ide0: BM-DMA at 0xf000-0xf007, BIOS settings: hda:pio, hdb:pio
69	ide1: BM-DMA at 0xf008-0xf00f, BIOS settings: hdc:pio, hdd:pio
70	hda: ST3630A, ATA DISK drive
71	hdb: ATAPI CDROM, ATAPI CD/DVD-ROM drive
72	hdc: ST34321A, ATA DISK drive
73	ide0 at 0x1f0-0x1f7,0x3f6 on irq 14
74	ide1 at 0x170-0x177,0x376 on irq 15
75	blk: queue c01876c4, I/O limit 4095Mb (mask 0xffffffff)
76	hda: 1232784 sectors (631 MB) w/120KiB Cache, CHS=611/32/63, DMA
77	blk: queue c0187a28, I/O limit 4095Mb (mask 0xffffffff)
78	hdc: 8404830 sectors (4303 MB) w/128KiB Cache, CHS=8894/15/63, UDMA(33)
79	hdb: ATAPI 40X CD-ROM drive, 128kB Cache, UDMA(33)
80	Uniform CD-ROM driver Revision: 3.12
81	Partition check:
82	/dev/ide/host0/bus0/target0/lun0: p1 p2
83	/dev/ide/host0/bus1/target0/lun0: p1 p2 p3 p4 < p5 p6 >
84	Floppy drive(s): fd0 is 1.44M
85	FDC 0 is a post-1991 82077
86	loop: loaded (max 8 devices)
87	PPP generic driver version 2.4.2
88	8139too Fast Ethernet driver 0.9.26
89	eth0: RealTek RTL8139 Fast Ethernet at 0xc8804000, 00:30:84:28:e3:12, IRQ 9
90	eth0: Identified 8139 chip type 'RTL-8139C'
91	eth1: RealTek RTL8139 Fast Ethernet at 0xc8806000, 00:e0:7d:82:48:3c, IRQ 12
92	eth1: Identified 8139 chip type 'RTL-8139B'
93	Linux agpgart interface v0.99 (c) Jeff Hartmann
94	agpgart: Maximum main memory to use for agp memory: 96M
95	agpgart: no supported devices found.
96	SCSI subsystem driver Revision: 1.00
97	scsi0 : AM53/79C974 PCscsi driver rev. 0.5; host I/O address: 0x6700; irq: 11
98
99	NET4: Linux TCP/IP 1.0 for NET4.0
100	IP Protocols: ICMP, UDP, TCP, IGMP
101	IP: routing cache hash table of 1024 buckets, 8Kbytes
102	TCP: Hash tables configured (established 8192 bind 8192)
103	NET4: Unix domain sockets 1.0/SMP for Linux NET4.0.
104	reiserfs: checking transaction log (device 03:02) ...
105	Using r5 hash to sort names
106	ReiserFS version 3.6.25
107	VFS: Mounted root (reiserfs filesystem) readonly.
108	SELinux: Completing initialization.
109	security: loading policy configuration from /etc/security/selinux/policy.12
110	security: 3 users, 6 roles, 338 types
111	security: 29 classes, 22774 rules
112	SELinux: initialized (dev 03:02, type reiserfs), uses PSIDs
113	SELinux: initialized (dev 00:08, type devpts), uses transition SIDs
114	SELinux: initialized (dev 00:07, type devfs), uses genfs_contexts
115	SELinux: initialized (dev 00:06, type binfmt_misc), not configured for labeling
116	SELinux: initialized (dev 00:05, type pipefs), uses task SIDs
117	SELinux: initialized (dev 00:04, type tmpfs), uses transition SIDs
118	SELinux: initialized (dev 00:03, type sockfs), uses task SIDs
119	SELinux: initialized (dev 00:02, type proc), uses genfs_contexts
120	SELinux: initialized (dev 00:01, type bdev), not configured for labeling
121	SELinux: initialized (dev 00:00, type rootfs), not configured for labeling
122	Mounted devfs on /dev
123	Freeing unused kernel memory: 264k freed
124	Adding Swap: 499864k swap-space (priority -1)
125
126	avc: denied { getattr } for pid=163 exe=/sbin/reiserfsck path=/random dev=00:07 ino=10 scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file
127
128	avc: denied { getattr } for pid=163 exe=/sbin/reiserfsck path=/ppp dev=00:07 ino=399 scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file
129
130	avc: denied { add_name } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=dir
131
132	avc: denied { create } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file
133
134	avc: denied { getattr } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file
135
136	avc: denied { write } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file
137
138	avc: denied { read } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file
139
140	avc: denied { remove_name } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=dir
141
142	avc: denied { unlink } for pid=181 exe=/bin/bash path=/tmp/sh-thd-1061078468 dev=03:02 ino=40068 scontext=system_u:system_r:update_modules_t tcontext=system_u:object_r:file_t tclass=file
143
144	avc: denied { getattr } for pid=263 exe=/sbin/reiserfsck scontext=system_u:system_r:fsadm_t tcontext=system_u:object_r:proc_t tclass=filesystem
145	reiserfs: checking transaction log (device 16:01) ...
146	Using r5 hash to sort names
147	ReiserFS version 3.6.25
148	SELinux: initialized (dev 16:01, type reiserfs), uses PSIDs
149	reiserfs: checking transaction log (device 16:02) ...
150	Using r5 hash to sort names
151	ReiserFS version 3.6.25
152	SELinux: initialized (dev 16:02, type reiserfs), uses PSIDs
153	reiserfs: checking transaction log (device 16:03) ...
154	Using r5 hash to sort names
155	ReiserFS version 3.6.25
156	SELinux: initialized (dev 16:03, type reiserfs), uses PSIDs
157	reiserfs: checking transaction log (device 16:06) ...
158	Using r5 hash to sort names
159	ReiserFS version 3.6.25
160	SELinux: initialized (dev 16:06, type reiserfs), uses PSIDs
161	SELinux: initialized (dev 00:09, type tmpfs), uses transition SIDs
162	eth0: Setting 100mbps full-duplex based on auto-negotiated partner ability 45e1.
163
164	avc: denied { append } for pid=757 exe=/usr/sbin/syslog-ng path=/vc/12 dev=00:07 ino=26 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tty_device_t tclass=chr_file
165
166	avc: denied { setattr } for pid=757 exe=/usr/sbin/syslog-ng path=/vc/12 dev=00:07 ino=26 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tty_device_t tclass=chr_file
167
168	avc: denied { read } for pid=817 exe=/bin/bash path=/root dev=03:02 ino=3872 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_dir_t tclass=dir
169
170	avc: denied { write } for pid=823 exe=/bin/bash path=/root/dmesg.txt dev=03:02 ino=39881 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_t tclass=file
171
172	avc: denied { setattr } for pid=823 exe=/bin/bash path=/root/dmesg.txt dev=03:02 ino=39881 scontext=root:staff_r:staff_t tcontext=system_u:object_r:sysadm_home_t tclass=file
173
174
175	gruss
176	/Christian mailto:caefer@××××××××××.net
177
178	---
179
180
181	I propose that the following character sequence for joke markers:
182
183	:-)
184
185	19-Sep-82 11:44 Scott E Fahlman
186
187
188	--
189	gentoo-hardened@g.o mailing list