From: Marc P. <ma...@en...> - 2005-03-17 19:45:38
|
[please don't top post if you can help it] > -----Original Message----- > From: nag...@li... [mailto:nagios-users- > ad...@li...] On Behalf Of Scott Gwartney > Sent: Thursday, March 17, 2005 12:58 PM > To: nag...@li... > Subject: RE: [Nagios-users] External Commands not working >=20 > I ran audit2allow -l -i /var/log/messages Restarted nagios and apache, > tried > external command and got the same error. The system message showed: >=20 > audit(1111085444.812:0): avc: denied { getattr } for pid=3D7241 > exe=3D/usr/local/nagios/sbin/cmd.cgi > path=3D/usr/local/nagios/var/rw/nagios.cmd > dev=3Ddm-0 ino=3D3591465 scontext=3Droot:system_r:httpd_sys_script_t > tcontext=3Droot:object_r:usr_t tclass=3Dfifo_file Audit2allow doesn't actually change the policy. It just proposes a change that you need to make manually. Did you add it to your policy file then do a 'cd /etc/selinux/strict/src/policy; make load'? I believe the policy file you need to edit might be located at /etc/selinux/strict/src/policy/domains/misc/local.te but I would encourage you to research SELinux on your own if you are not familiar with it. Additionally, it is my understanding that audit2allow likely proposes a policy change that may be more open than is required. Again, research on your part based on your acceptable policies would be warranted. -- Marc |