分类: LINUX
2011-08-02 10:15:48
有时,你确定是selinux的权限问题,但是,在/var/log/audit/audit.log却看不到相关的日志,这是因为dontaudits关闭了相应的日志,使用semodule -DB打开日志。
Be careful of dontaudits, policy can define things not to audit, ie dontaudits typically say "I expect this failure and I don't want to see it/have it filling up my logs". if that is the case then you won't see it.
from semodule man page
Turn on all AVC Messages for which
SELinux currently is "dontaudit"ing.
semodule -DB
Turn "dontaudit" rules back on.
semodule -B
