First I have done
1- apt-get install selinux.
2- Reboot the server.
3- Selinuxtype is configured as ubuntu and selinux=enforcing.
4- Then i try to login into the server via ssh, i found the following error:
type=AVC msg=audit(1297743880.370:15): avc: denied { execute } for pid=1076
comm="sshd" name="bash" dev=dm-0 ino=133440
scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:sshd_t:s0
tclass=file
type=SYSCALL msg=audit(1297743880.370:15): arch=c000003e syscall=59 success=no
exit=-13 a0=7f9ea2947780 a1=7fffe8c62500 a2=7f9ea2957ca0 a3=0 items=0 ppid=1061
pid=1076 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=pts1 ses=4294967295 comm="sshd" exe="/usr/sbin/sshd"
subj=system_u:system_r:kernel_t:s0 key=(null)
5- when i fire the command:
audit2allow -a -w
It shows error:
… type=AVC msg=audit(1297743880.370:15): avc: denied { execute } for
pid=1076 comm="sshd" name="bash" dev=dm-0 ino=133440
scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:sshd_t:s0
tclass=file
Was caused by:
Missing type enforcement (TE) allow rule.
You can use audit2allow to generate a loadable module to
allow this access.
6- Even after fire the command:
"audit2allow -a" nothing happened. We are not able to get login into the
server.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/718611
Title:
Bug in ubunt10.10 64 bit edition
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
