[syslog-ng] syslog-ng and selinux

Ronny Vaningh ronny at netrusion.com
Sun Dec 25 12:31:11 CET 2005

I just installed syslog-ng 1.6.9 on a centos 4.2 machine and syslog-ng 
doesnt start even after setting setsebool -P use_syslogng=1

I still get the error

Starting system logger: Error opening file /proc/kmsg for reading 
(Permission denied)

However it seems that syslog-ng tries to write to /prc/kmsg instead of 
reading it

type=AVC msg=audit(1135510199.139:26): avc:  denied  { write } for 
pid=11942 comm="syslog-ng" name="kmsg" dev=proc ino=-268435446 
scontext=root:system_r:syslogd_t tcontext=system_u:object_r:proc_kmsg_t 

I'm a little bit puzzled why syslog-ng tries to write to /proc/kmsg 
instead of just reading messages of it.

I can off course change the policy to allow writing but I feel that I 
must be doing something wrong here



More information about the syslog-ng mailing list