Gentoo Archives: gentoo-hardened

From:	Chris PeBenito <pebenito@g.o>
To:	Andrei Ivanov <andrei.ivanov@××××.ro>
Cc:	gentoo-hardened@l.g.o
Subject:	Re: [gentoo-hardened] [SELinux] denials and lock up
Date:	Sat, 11 Sep 2004 15:48:16
Message-Id:	`1094917704.6513.69.camel@gorn.pebenito.net`
In Reply to:	[gentoo-hardened] [SELinux] denials and lock up by Andrei Ivanov

1	On Sat, 2004-09-11 at 09:45, Andrei Ivanov wrote:
2	> Hello,
3	> I'm a SELinux newbie and I have some problems with denials.
4	> It seems that SELinux would deny almost everything, including system
5	> tasks:
6	>
7	> audit(1094916629.677:0): avc: denied { search } for pid=18204
8	> exe=/bin/dmesg dev=ramfs ino=774 scontext=system_u:system_r:d
9	> mesg_t tcontext=system_u:object_r:ramfs_t tclass=dir
10
11	> none on /dev type ramfs (rw)
12
13	You're using udev which doesn't work on SELinux right now (it will
14	soon). You have to unmerge it for now. I'll update the handbook to say
15	this.
16
17	--
18	Chris PeBenito
19	<pebenito@g.o>
20	Developer,
21	Hardened Gentoo Linux
22	Embedded Gentoo Linux
23
24	Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243
25	Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243

File name	MIME type
signature.asc	application/pgp-signature