Re: A sendmail problem

On 10/08/10 14:38, m.roth@5-cent.us wrote:
> The last few days - I think there was a policy update to FC13 - I started
> seeing
> /etc/cron.daily/0logwatch:
>>
>> Can't exec "sendmail": Permission denied at /usr/sbin/logwatch line
>> 1032,<TESTFILE> line 2.
>> Can't execute sendmail -t: Permission denied
>
> Mentioned this to my manager, and he didn't see anything in messages, but
> saw this audit message:
>
> type=SELINUX_ERR msg=audit(1281423963.394:71003):
> security_compute_sid: invalid context
> system_u:system_r:logwatch_mail_t:s0-s0:c0.c1023 for
> scontext=system_u:system_r:logwatch_t:s0-s0:c0.c1023
> tcontext=system_u:object_r:sendmail_exec_t:s0 tclass=process
>
> Why would a policy prevent logwatch from using sendmail to forward a log?

https://bugzilla.redhat.com/show_bug.cgi?id=617790

Paul.
-- selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux

• This message: [ Message body ]
• Next message: Daniel J Walsh: "Re: A sendmail problem"
• Previous message: m.roth_at_nospam: "A sendmail problem"
• In reply to: m.roth_at_nospam: "A sendmail problem"
• Next in thread: mark: "Re: A sendmail problem"
• Reply: mark: "Re: A sendmail problem"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]