Fedora Linux Support Community & Resources Center
  #1  
Old 19th September 2008, 12:24 PM
amitshruti123 Offline
Registered User
  
Join Date: Feb 2007
Location: Nahan (Himachal Pradesh) INDIA
Age: 29
Posts: 34
Angry SE LINUX Trouble
When ever someone is accessing my machine using telnet i am getting an alert from SELINUX

Code:
Summary:

SELinux prevented in.telnetd from using the terminal 6.

Detailed Description:

SELinux prevented in.telnetd from using the terminal 6. In most cases daemons do
not need to interact with the terminal, usually these avc messages can be
ignored. All of the confined daemons should have dontaudit rules around using
the terminal. Please file a bug report
(http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this selinux-policy.
If you would like to allow all daemons to interact with the terminal, you can
turn on the allow_daemons_use_tty boolean.

Allowing Access:

Changing the "allow_daemons_use_tty" boolean to true will allow this access:
"setsebool -P allow_daemons_use_tty=1."

The following command will allow this access:

setsebool -P allow_daemons_use_tty=1

Additional Information:

Source Context                system_u:system_r:telnetd_t:s0-s0:c0.c1023
Target Context                system_u:object_r:unconfined_devpts_t:s0
Target Objects                6 [ chr_file ]
Source                        in.telnetd
Source Path                   /usr/sbin/in.telnetd
Port                          <Unknown>
Host                          <somehost>
Source RPM Packages           telnet-server-0.17-41.fc8
Target RPM Packages           
Policy RPM                    selinux-policy-3.0.8-109.fc8
Selinux Enabled               True
Policy Type                   targeted
MLS Enabled                   True
Enforcing Mode                Enforcing
Plugin Name                   allow_daemons_use_tty
Host Name                     <somehost>
Platform                      Linux <somehost> 2.6.25.9-40.fc8 #1 SMP
                              Fri Jun 27 16:25:53 EDT 2008 i686 i686
Alert Count                   36
First Seen                    Sun 07 Sep 2008 12:08:24 AM IST
Last Seen                     Wed 10 Sep 2008 04:47:53 PM IST
Local ID                      8a6125dc-a418-4caa-bfbb-a2a2cab3bcf0
Line Numbers                  

Raw Audit Messages            

host=andromeda.nitc.ac.in type=AVC msg=audit(1221045473.560:5507): avc:  denied  { setattr } for  pid=3241 comm="in.telnetd" name="6" dev=devpts ino=8 scontext=system_u:system_r:telnetd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:unconfined_devpts_t:s0 tclass=chr_file

host=andromeda.nitc.ac.in type=SYSCALL msg=audit(1221045473.560:5507): arch=40000003 syscall=212 success=no exit=-13 a0=b7f6d960 a1=0 a2=0 a3=b7f6d965 items=0 ppid=2097 pid=3241 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="in.telnetd" exe="/usr/sbin/in.telnetd" subj=system_u:system_r:telnetd_t:s0-s0:c0.c1023 key=(null)

i have done the allow_access.... for allowing the user telnet login but still the alert is coming, although users are able to login successfully but still alerts are coming ...

Why is it so ?/
__________________
:cool: Bugg'z

Amit Pundir
http://buggzontux.blogspot.com
Registered Linux User #471421
Reply With Quote
Reply

Tags
linux, trouble

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
New to Linux, having trouble installing applications. blackout87gn Using Fedora 10 4th October 2009 04:18 AM
AMD Phenom (Quad) + Linux = Trouble? notageek Wibble 42 19th February 2009 08:14 PM
Windows and Linux integration trouble hyjalsoul Servers & Networking 1 24th August 2007 10:23 PM
Gaming on linux, worth the trouble? BabySeal Gamers' Lounge 40 21st March 2007 11:53 PM
A trouble-free 64 bit Linux distro satimis Linux Chat 7 28th August 2006 12:02 AM


Current GMT-time: 14:33 (Saturday, 18-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat