On Tue, 18 Jul 2017 17:03:40 +0100, Andrew C Aitchison <[email protected]> wrote:
>On Tue, 18 Jul 2017, Stephen Isard wrote: > >> On Mon, 17 Jul 2017 23:52:22 +0200, Maarten <[email protected]> >> wrote: >> >>> The process exim running with the the selinux context exim_t is trying >>> to access the directory /proc/net which has the selinux context >>> sysctl_net_t. >>> >>> Causing selinux to block access to directory, because the source context >>> is different from the destination context. >> >> Yes, thank you, I've got that part. As I said earlier, what I am wondering >> now is why exim is trying to search that directory, and whether I want it to. >> It happens at - to me - unpredictable times, apparently unrelated to any >> messages being sent or received. > >Looking at the upstream source for exim 4.89, there are two lots of >references to /proc >1) /proc/loadavg >2) /proc/net/if_inet6 >unsuprisingly exim uses these to determine load average and >IPv6 address etc... > >I don't know whether the binary rpms add any other uses of /proc >- which version of exim are you using - the one from epel ? Yes, it is exim 4.89-1.el7 from epel.
