cross
New Foswiki release 2.1.6 is available with important security fixes.
Sourceforge foswiki email lists being discontinued. Subscribe to the new Foswiki announce and discuss lists at MailingLists
This question about Installation of Foswiki: Answered

Strange output on the command line (audit: avc: denied)

Hello,

I have an Foswiki 1.0.5 on a CentOs 4.7 VM and get when I access my Foswiki using the Webinterface and login as the internal admin some strange output on the command line.

But I don't have any entries in any logs. And I don't have find bugs at the moment.

At my older Foswiki 1.0.4 on a CentOs 4.7 VM there wasn't anything like that.

Here are some examples of the output.

audit(1241693049.091:2): avc: denied { read } for pid=4332 comm="view" name="NatEditPlugin.pm" dev=dm-0 ino=691391 scontext=root:system_r:httpd_sys_script_t tcontext=root:object_r:tmp_t tclass=file
audit(1241693049.102:3): avc: denied { ioctl } for pid=4332 comm="view" name="NatEditPlugin.pm" dev=dm-0 ino=691391 scontext=root:system_r:httpd_sys_script_t Tcontext=root:object_r:tmp_t tclass=file
audit(1241693056.234:4): avc: denied { getattr } for pid=4331 comm="httpd" name="style.css" dev=dm-0 ino=691411 scontext=root:system_r:httpd_t tcontext=root:object_r:tmp_t tclass=file
audit(1241693056.235:5): avc: denied { read } for pid=4331 comm="httpd" name="style.css" dev=dm-0 ino=691411 scontext=root:system_r:httpd_t tcontext=root:object_r:tmp_t tclass=filecd /

audit(1241693531.232:6): avc: denied { getattr } for pid=4333 comm="view" name="NatEditPlugin.txt" dev=dm-0 ino=691386 scontext=root:system_r:httpd_sys_script_t tcontext=root:object_r:tmp_t tclass=file

 

And i will attach some graphical screenshots of these.(Because perhaps, i could misstyped, because I don't know how I can copy and paste between my VM and my PC...)

Many Thanks

-- Main.StephaniePlatz - 08 May 2009

At the moment I accessed the configure-webinterface I got another output.

I'v attached it after the three other examples.

-- StephaniePlatz - 08 May 2009

Now i have disabled the NatSkinPlugin and the NatEditPlugin in the configure-webinterface and restarted the vm.

Accessing the WebHome, there wasn't any output, but accessing the configure I get again such output.

-- StephaniePlatz - 08 May 2009

I guess, you are running SELinux on your machine and set some restrictions. I never touched a SELinux, but from the all-knowing Trash Heap I got the following suggestion:

Edit /etc/selinux/config and change:

SELINUX=enforcing

to:
SELINUX=permissive

or:
SELINUX=disabled

This will most probably relax your access restrictions, but may compromise your system aswell.

-- OliverKrueger - 09 May 2009

Yes, I have installed SELinux, but I forgot it (stupid thing I know). I also got this messages only on the VM with the permessive configuration and I disabled it.

Many thanks

-- StephaniePlatz - 11 May 2009
Topic revision: r6 - 10 Jan 2013, GeorgeClark - This page was cached on 23 Jun 2018 - 02:50.

The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. See Copyright Statement. Creative Commons License    Legal Imprint    Privacy Policy