* SuSE packages updated
@ 2005-10-19 22:36 Thomas Bleher
2005-10-20 3:23 ` Dale Amon
0 siblings, 1 reply; 4+ messages in thread
From: Thomas Bleher @ 2005-10-19 22:36 UTC (permalink / raw)
To: SELinux ML
[-- Attachment #1: Type: text/plain, Size: 507 bytes --]
For those interested in SELinux on SuSE: I have rebased the packages to
openSUSE 10.0 (they were previously based on one of the beta releases).
They are available from the usual place:
http://www.cip.ifi.lmu.de/~bleher/selinux/suse/rpm-10.0/
The policy on my site is quite dated; if you want the policy I'm
currently working on, just send me a mail.
Thomas
--
http://www.cip.ifi.lmu.de/~bleher/selinux/ - my SELinux pages
GPG-Fingerprint: BC4F BB16 30D6 F253 E3EA D09E C562 2BAE B2F4 ABE7
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: SuSE packages updated
2005-10-19 22:36 SuSE packages updated Thomas Bleher
@ 2005-10-20 3:23 ` Dale Amon
2005-10-20 6:20 ` Audit errors Jayendren Anand Maduray
2005-10-21 1:58 ` SuSE packages updated Thomas Bleher
0 siblings, 2 replies; 4+ messages in thread
From: Dale Amon @ 2005-10-20 3:23 UTC (permalink / raw)
To: SELinux ML
[-- Attachment #1: Type: text/plain, Size: 905 bytes --]
On Thu, Oct 20, 2005 at 12:36:34AM +0200, Thomas Bleher wrote:
> For those interested in SELinux on SuSE: I have rebased the packages to
> openSUSE 10.0 (they were previously based on one of the beta releases).
> They are available from the usual place:
> http://www.cip.ifi.lmu.de/~bleher/selinux/suse/rpm-10.0/
>
> The policy on my site is quite dated; if you want the policy I'm
> currently working on, just send me a mail.
Do your packages and policy work on the Novell or
SuSE SLES 9?
--
------------------------------------------------------
Artemis Systems Development
Dale Amon amon@islandone.org +44-7802-188325
International linux systems consultancy
Hardware & software system design, security
and networking, systems programming and Admin
"Have Laptop, Will Travel"
------------------------------------------------------
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Audit errors
2005-10-20 3:23 ` Dale Amon
@ 2005-10-20 6:20 ` Jayendren Anand Maduray
2005-10-21 1:58 ` SuSE packages updated Thomas Bleher
1 sibling, 0 replies; 4+ messages in thread
From: Jayendren Anand Maduray @ 2005-10-20 6:20 UTC (permalink / raw)
To: SELinux ML
[-- Attachment #1: Type: text/plain, Size: 3198 bytes --]
Greetings fellow travellers.
Could someone please help me with the following errors:
*audit(1129788324.500:0): avc: denied { execute } for pid=3105
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.501:0): avc: denied { execute } for pid=3106
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.507:0): avc: denied { execute } for pid=3107
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.510:0): avc: denied { execute } for pid=3108
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.514:0): avc: denied { execute } for pid=3109
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.517:0): avc: denied { execute } for pid=3110
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.521:0): avc: denied { execute } for pid=3111
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.522:0): avc: denied { execute } for pid=3112
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.528:0): avc: denied { execute } for pid=3113
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file
audit(1129788324.529:0): avc: denied { execute } for pid=3114
exe=/usr/sbin/squid name=squidclamav dev=hda8 ino=185872
scontext=user_u:system_r:squid_t t
context=root:object_r:usr_t tclass=file*
These errors are from dmesg, and occured after compiling and installing
squidclam from source.
Here is the output of selinuxconf:
[*root@shiva jay]# selinuxconfig
selinux state="enforcing"
policypath="/etc/selinux/targeted"
default_type_path="/etc/selinux/targeted/contexts/default_type"
default_context_path="/etc/selinux/targeted/contexts/default_contexts"
default_failsafe_context_path="/etc/selinux/targeted/contexts/failsafe_context"
binary_policy_path="/etc/selinux/targeted/policy/policy"
user_contexts_path="/etc/selinux/targeted/contexts/users/"
contexts_path="/etc/selinux/targeted/contexts"*
Output of uname -a:
*[root@shiva jay]# uname -a
Linux shiva 2.6.9-1.667smp #1 SMP Tue Nov 2 14:59:52 EST 2004 i686 i686
i386 GNU/Linux*
Any help would be greatly appreciated.
God bless.
--
Jayendren Anand Maduray
Microsoft Certified Professional
Network Plus
IT Administrator
Perinatal HIV Research Unit
Old Potch Road
Chris Hani Baragwanath Hospital
Soweto
South Africa
Tel: +27 11 989 9776
Tel: +27 11 989 9999
Fax: +27 11 938 3973
Cel: 082 22 774 94
Alternate email address: jayendren@mweb.co.za
[-- Attachment #2: Type: text/html, Size: 3888 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: SuSE packages updated
2005-10-20 3:23 ` Dale Amon
2005-10-20 6:20 ` Audit errors Jayendren Anand Maduray
@ 2005-10-21 1:58 ` Thomas Bleher
1 sibling, 0 replies; 4+ messages in thread
From: Thomas Bleher @ 2005-10-21 1:58 UTC (permalink / raw)
To: SELinux ML
[-- Attachment #1: Type: text/plain, Size: 1256 bytes --]
* Dale Amon <amon@vnl.com> [2005-10-20 05:35]:
> On Thu, Oct 20, 2005 at 12:36:34AM +0200, Thomas Bleher wrote:
> > For those interested in SELinux on SuSE: I have rebased the packages to
> > openSUSE 10.0 (they were previously based on one of the beta releases).
> > They are available from the usual place:
> > http://www.cip.ifi.lmu.de/~bleher/selinux/suse/rpm-10.0/
> >
> > The policy on my site is quite dated; if you want the policy I'm
> > currently working on, just send me a mail.
>
> Do your packages and policy work on the Novell or
> SuSE SLES 9?
I don't know since I have no access to these distributions.
But it shouldn't be too difficult to port them:
While SUSE does not officially support SELinux, at least they include
the patches in some of their packages. The only packages I had to patch
were coreutils, cron, openssh, pam, pam-modules and sysvinit; sometimes
it just meant recompiling with SELinux support, sometimes adapting the
patches from Fedora. Assuming the packages are similar, just take the
patches and apply them to SLES; rpmdiff is your friend :-).
Thomas
--
http://www.cip.ifi.lmu.de/~bleher/selinux/ - my SELinux pages
GPG-Fingerprint: BC4F BB16 30D6 F253 E3EA D09E C562 2BAE B2F4 ABE7
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-10-21 2:01 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-10-19 22:36 SuSE packages updated Thomas Bleher
2005-10-20 3:23 ` Dale Amon
2005-10-20 6:20 ` Audit errors Jayendren Anand Maduray
2005-10-21 1:58 ` SuSE packages updated Thomas Bleher
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.