>>SELinux Mailing List

Contents

Overview

What's New

Frequently Asked Questions

Background

Documentation

License

Download

Participating

Mail List

Archive Summary

Archive by Thread

Archive by Author

Archive by Date

Archive by Subject

Remaining Work

Contributors

Related Work

Press Releases

sendmail config question

From: Dan Berberich <dberb_at_bellatlantic.net>
Date: Tue, 20 Nov 2001 14:58:57 -0500

When simply sending mail from root to user or form user to user on localhost I get an avc denial message
avc: denied { remove_name search } for pid=675 exc=/bin/mail path=/var/spool/mail/user_02 dev=03:05 ino=310085

	scontext=user_02:user_r:user_t
	tcontext=system_u:object:r:mail_spool_t
t	class=dir

BUT, mail to root does not get denied.
Looking at sendmail.te there is the line:

allow sendmail_t mail_spool_t:dir rw_dir_perms how would I add the remove_name search (and other additional permissions for the directory file class)
I cannot seem to find the macro definition for them.

thank you
-Dan Berberich

--

You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Tue 20 Nov 2001 - 15:06:45 EST

This message: [ Message body ]
Next message: Stephen Smalley: "Re: sendmail config question"
Previous message: Stephen Smalley: "[PATCH] Bug fix for selinux_inode_delete hook"
Next in thread: Stephen Smalley: "Re: sendmail config question"
Reply: Stephen Smalley: "Re: sendmail config question"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

This archive was generated by hypermail 2.2.0 on Wed 11 Jun 2008 - 08:10:26 EDT