View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0018359 | CentOS-7 | selinux-policy | public | 2021-11-23 09:04 | 2021-11-23 15:49 |
| Reporter | haoyahao3 | Assigned To | |||
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | new | Resolution | open | ||
| OS Version | 7 | ||||
| Summary | 0018359: SELinux is preventing auditd from using the 'fowner' capabilities. | ||||
| Description | Description of problem: SELinux is preventing auditd from using the 'fowner' capabilities. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that auditd should have the fowner capability by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'auditd' --raw | audit2allow -M my-auditd # semodule -i my-auditd.pp Additional Information: Source Context system_u:system_r:auditd_t:s0 Target Context system_u:system_r:auditd_t:s0 Target Objects Unknown [ capability ] Source auditd Source Path auditd Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-268.el7_9.2.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 5.15.0-1.el7.elrepo.x86_64 #1 SMP Sun Oct 31 17:19:16 EDT 2021 x86_64 x86_64 Alert Count 3 First Seen 2021-11-09 19:37:57 CST Last Seen 2021-11-22 00:23:46 CST Local ID c5cc5617-8f5a-4197-908f-5ceb5f2753cb Raw Audit Messages type=AVC msg=audit(1637511826.848:33194): avc: denied { fowner } for pid=2784 comm="auditd" capability=3 scontext=system_u:system_r:auditd_t:s0 tcontext=system_u:system_r:auditd_t:s0 tclass=capability permissive=0 Hash: auditd,auditd_t,auditd_t,capability,fowner Version-Release number of selected component: selinux-policy-3.13.1-268.el7_9.2.noarch | ||||
| Additional Information | reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 5.15.0-1.el7.elrepo.x86_64 reproducible: Not sure how to reproduce the problem type: libreport | ||||
| Tags | No tags attached. | ||||
| abrt_hash | 13c93f8e12e01837a6d7bda501c4aa994d2db66f6e950555a882e1d10a60b3c8 | ||||
| URL | |||||
 |
Please relabel your system, I am pretty sure that both this error and the other one that you have reported are caused by a mislabel |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2021-11-23 09:04 | haoyahao3 | New Issue | |
| 2021-11-23 15:49 | ManuelWolfshant | Note Added: 0038748 |
