4

Can sealert display the full command of a denied access request?

view full story
linux-howto

http://serverfault.com – I am managing a Red Hat Enterprise 5 system using Chef. Something within sequence of configuration commands is generating selinux alerts such as: SELinux is preventing iptables (iptables_t) "read" to /superhome/dir (user_home_dir_t). However when I run "sealert -l", it seems I only see partial information: ...snip... Additional Information: Source Context root:system_r:iptables_t Target Context system_u:object_r:user_home_dir_t Target Objects /superhome/redacted [ dir ] Source iptables Source Path /sbin (HowTos)