having an issue with syslog and SElinux - syslog-ng - lists.balabit.hu

newer
Re: [syslog-ng] syslog-ng Digest,...

having an issue with syslog and SElinux

older
[Bug 61] udp6 source declaration...

Frank Scalzo

18 Dec 2012 18 Dec '12

2:40 p.m.

kernel: : type=1400 audit(1355841452.964:21866): avc: denied { fowner } for pid=861 comm="syslog-ng" capability=3 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:system_r:syslogd_t:s0 tclass=capability How do i fix this without disabling SElinux

Attachments:

attachment.html (text/html — 319 bytes)

Show replies by date

Gergely Nagy

18 Dec 18 Dec

5:36 p.m.

Frank Scalzo <fscalzo@gmail.com> writes:

kernel: : type=1400 audit(1355841452.964:21866): avc: denied { fowner } for pid=861 comm="syslog-ng" capability=3 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:system_r:syslogd_t:s0 tclass=capability

How do i fix this without disabling SElinux

While I'm not a SELinux expert, and I can't say for sure that I understand the error message, but perhaps running syslog-ng with --disable-caps would help. -- |8]

Jose Pedro Oliveira

20 Dec 20 Dec

1:58 p.m.

On 2012-12-18 14:40, Frank Scalzo wrote:

kernel: : type=1400 audit(1355841452.964:21866): avc: denied { fowner } for pid=861 comm="syslog-ng" capability=3 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:system_r:syslogd_t:s0 tclass=capability

How do i fix this without disabling SElinux

Which Linux distribution are you using? And which versions of syslog-ng and selinux? A copy of your syslog-ng configuration file would also be helpful. jpo -- José Pedro Oliveira * mailto:jpo@di.uminho.pt *

4629

Age (days ago)

4631

Last active (days ago)

Download

2 comments

3 participants

tags

participants (3)

Frank Scalzo
Gergely Nagy
Jose Pedro Oliveira