[Bug 209773] [NEW] [hardy beta] unable to start syslog-ng if selinux is enforcing.

Mon, 31 Mar 2008 09:45:59 -0700 

Public bug reported:

Binary package hint: selinux

Symptom:
[EMAIL PROTECTED]:~# getenforce 
Enforcing
[EMAIL PROTECTED]:~# /etc/init.d/syslog-ng start
 * Starting system logging syslog-ng                                            
start-stop-daemon: Unable to start /sbin/syslog-ng: Permission denied 
(Permission denied)
                                                                         [fail]
[EMAIL PROTECTED]:~# setenforce 0
[EMAIL PROTECTED]:~# /etc/init.d/syslog-ng start
 * Starting system logging syslog-ng                                     [ ok ] 


Cause: 
[EMAIL PROTECTED]:~# dmesg
      <---snip--->
[ 2500.863873] audit(1206980642.829:117): security_compute_sid:  invalid 
context unconfined_u:system_r:syslogd_t for 
scontext=unconfined_u:unconfined_r:unconfined_t 
tcontext=system_u:object_r:syslogd_exec_t tclass=process
[ 2508.737889] audit(1206980650.713:118): enforcing=0 old_enforcing=1 
auid=4294967295
[ 2511.072712] audit(1206980653.053:119): security_compute_sid:  invalid 
context unconfined_u:system_r:syslogd_t for 
scontext=unconfined_u:unconfined_r:unconfined_t 
tcontext=system_u:object_r:syslogd_exec_t tclass=process
[ 2511.072746] audit(1206980653.053:120): avc:  denied  { transition } for  
pid=11785 comm="start-stop-daem" path="/sbin/syslog-ng" dev=sda3 ino=10944541 
scontext=unconfined_u:unconfined_r:unconfined_t 
tcontext=unconfined_u:system_r:syslogd_t tclass=process
     <---snip--->


Additional information:
[EMAIL PROTECTED]:~# lsb_release -rd
Description:    Ubuntu hardy (development branch)
Release:        8.04
   (All installed packages up to date as of today (post-beta release))

[EMAIL PROTECTED]:~# apt-cache policy selinux selinux-policy 
selinux-policy-refpolicy selinux-policy-unconfined 
selinux:
  Installed: 0.2
  Candidate: 0.2
  Version table:
 *** 0.2 0
        500 http://archive.ubuntu.com hardy/universe Packages
        100 /var/lib/dpkg/status
     0.1+ppa1 0
        500 http://ppa.launchpad.net hardy/main Packages
selinux-policy:
  Installed: (none)
  Candidate: (none)
  Version table:
selinux-policy-refpolicy:
  Installed: 0.0.20071214-0ubuntu2
  Candidate: 0.0.20071214-0ubuntu2
  Version table:
 *** 0.0.20071214-0ubuntu2 0
        500 http://archive.ubuntu.com hardy/universe Packages
        100 /var/lib/dpkg/status
selinux-policy-unconfined:
  Installed: (none)
  Candidate: (none)
  Version table:

** Affects: selinux (Ubuntu)
     Importance: Undecided
         Status: New

-- 
[hardy beta] unable to start syslog-ng if selinux is enforcing.
https://bugs.launchpad.net/bugs/209773
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to