CentOS 6.5 rma-agent selinux avc
Posted: Tue Sep 16, 2014 2:04 am
Hello,
I have couple of rma agents installed in my CentOS 6.5 hosts with Selinux enabled. These rma-agent is installed as requested by third party service provider.
Once in while rma-agent would stop working/not contactable by remote manager (?) and shifting through Selinux log i would find AVC errors such as these:
Short of writing my own custom TE, is there a pre-made selinux policy file for rma-agent on linux?
Thank you for any reply.
Regards,
Arashidi
I have couple of rma agents installed in my CentOS 6.5 hosts with Selinux enabled. These rma-agent is installed as requested by third party service provider.
Once in while rma-agent would stop working/not contactable by remote manager (?) and shifting through Selinux log i would find AVC errors such as these:
Code: Select all
type=AVC msg=audit(1410854252.845:124562): avc: denied { write } for pid=5832 comm="ping" path="/var/run/rma.pid" dev=dm-0 ino=1835104 scontext=unconfined_u:system_r:ping_t:s0 tcontext=unconfined_u:object_r:initrc_var_run_t:s0 tclass=file
Thank you for any reply.
Regards,
Arashidi
Code: Select all