SELinux : Please Explain …

Home » CentOS » SELinux : Please Explain …
CentOS 1 Comment

This is somehow off-topic, since the problem appears on a modified CentOS-6.2 (turned into a xen-4.1 host) : I get SELinux errors, and I’m not able to understand them.

type=AVC msg=audit(1343724164.898:298772): avc: denied { mac_admin } for pid399 comm=”restore” capability3 scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tclass

One thought on - SELinux : Please Explain …

  • mac_admin means some where you have a command that is trying to set a file context to something your current policy loaded into the kernel does not understand.

    Something like

    touch /tmp/foobar chcon -t unknownlabel /tmp/foobar

    Would cause this AVC.

    —–BEGIN PGP SIGNATURE—

LEAVE A COMMENT