Hi Pierre, Just to add for the record, some more violations. :-) All are the same.
r...@champaran:~$ sudo /etc/initTraceback (most recent call last):
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 940, in
handle_client_io
self.receiver.feed(data)
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 762, in
feed
self.process()
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 734, in
process
match = header_end_re.search(self.feed_buf)
KeyboardInterrupt
Exception in thread Thread-1 (most likely raised during interpreter shutdown):
Traceback (most recent call last):
File "/usr/lib/python2.5/threading.py", line 486, in __bootstrap_inner
File "/var/lib/python-support/python2.5/setroubleshoot/analyze.py", line
187, in run
File "/var/lib/python-support/python2.5/setroubleshoot/analyze.py", line
159, in analyze_avc
File "/var/lib/python-support/python2.5/setroubleshoot/server.py", line 137,
in report_problem
File "/var/lib/python-support/python2.5/setroubleshoot/analyze.py", line
210, in report_problem
File "/var/lib/python-support/python2.5/setroubleshoot/analyze.py", line
395, in add_siginfo
File "/var/lib/python-support/python2.5/setroubleshoot/server.py", line 377,
in signatures_updated
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 505, in
rpc_func
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 879, in
emit_rpc
File "/var/lib/python-support/python2.5/setroubleshoot/rpc.py", line 896, in
send_data
<type 'exceptions.AttributeError'>: 'NoneType' object has no attribute
'timeout'
On Sunday 12 Apr 2009 21:27:04 Pierre Chifflier wrote:
> Hi,
>
> I am now close to the solution, which is a combination of solving a bug
> and a new feature ;)
>
Thank you.
> the feature:
> setroubleshootd is no more a real daemon, it is now started on-demand
> when an alert is sent by auditd, or when sealert is started.
> The 10 seconds timeout is hardcoded, and is "normal".
>
This is fine. But it is just non-standard. So we'll have to maintain this mode
and take care of bugs, if any.
> Note that I also had to upgrade auditd locally. I asked Philipp to
> upgrade the package to 1.7.12 (#522026), and he has packaged it very
> quickly, so a new (and working) version of setroubleshootd will be
> uploaded very soon, I hope.
>
How would it react in cases where too many violations are generated frequently
(currently that's what the state of SELinux is on a Debian Destkop) ? This
will need some testing. Waiting for the package to hit the repo.. :-)
Ritesh
--
Ritesh Raj Sarraf
RESEARCHUT - http://www.researchut.com
"Necessity is the mother of invention."
signature.asc
Description: This is a digitally signed message part.
