[DSE-Dev] Bug#875726: selinux-policy-default: systemd-tmpfiles can't create lastlog in strict config on unstable
Russell Coker
russell at coker.com.au
Thu Sep 14 02:55:13 UTC 2017
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
[ 9.079307] audit: type=1400 audit(1505357240.712:4): avc: denied { create } for pid=254 comm="systemd-tmpfile" name="lastlog" scontext=system_u:system_r:systemd_tmpfiles_t:s0 tcontext=system_u:object_r:lastlog_t:s0 tclass=file permissive=0
[ 9.081502] audit: type=1400 audit(1505357240.712:5): avc: denied { open } for pid=254 comm="systemd-tmpfile" path="/var/log/lastlog" dev="vda" ino=69713 scontext=system_u:system_r:systemd_tmpfiles_t:s0 tcontext=system_u:object_r:lastlog_t:s0 tclass=file permissive=0
-- System Information:
Debian Release: buster/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), LANGUAGE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages selinux-policy-default depends on:
ii libselinux1 2.7-1
ii libsemanage1 2.7-1
ii libsepol1 2.7-1
ii policycoreutils 2.7-1
ii selinux-utils 2.7-1
Versions of packages selinux-policy-default recommends:
ii checkpolicy 2.7-1
ii setools 4.1.1-3
Versions of packages selinux-policy-default suggests:
pn logcheck <none>
pn syslog-summary <none>
-- Configuration Files:
/etc/selinux/default/modules/active/file_contexts.local changed [not included]
-- no debconf information
More information about the SELinux-devel
mailing list