Package: selinux-policy-default
Version: 2:0.0.20080702-6
Severity: important
A simple "ps aux" call spams the kernel log with one deny message per
ssh process.
| audit(1240860641.146:237): avc: denied { ptrace } for pid=20899 comm="ps"
scontext=staff_u:staff_r:staff_t:s0-s0:c0.c1023
tcontext=staff_u:staff_r:staff_ssh_t:s0-s0:c0.c1023 tclass=process
The ptrace check is used by the kernel to determine if the caller is
allowed to read critical things within /proc/$pid.
Bastian
--
Witch! Witch! They'll burn ya!
-- Hag, "Tomorrow is Yesterday", stardate unknown
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
