Hi.
When the MySQL server is launched, I get the following AVC denial
Aug 1 17:38:40 mv1 audit(1185982720.744:3): avc: denied { read }
for pid=4663 comm="runscript.sh" name="my.cnf" dev=sda3 ino=620438
scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:mysqld_etc_t tclass=file
Obviousy, audit2allow tells me to add the following autorisation :
allow initrc_t mysqld_etc_t:file read
I do not think that it generates any kind of weakness into the server
as only starting services have the initrc_t state and thus it may be
impossible (ar at least difficult) to corrupt theses services and then
tell them to access my.cnf when they start.
However, I do not find any similar error on the web.
Am I they only one wo get this AVC denial ?
-- Julien Thomas
--
[EMAIL PROTECTED] mailing list