Hi Daniel,
Thanks for your reply, looks like that may be what I need. :)
I assume again this wont upset teh running of the machine when this is performed?
Also is theis change persisteant after reboots?
Is there a way for making a new policy to allow the required actions instead of removing the dontaudit all together?
many thanks
On 17 April 2010 00:45, Daniel J Walsh dwalsh@redhat.com wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
The problem you are seeing is dontaudit rules. snmp is not allowed to read content within the users home dirs. If you want to turn off dontaudit rules you can by executing
semodule -DB
semodule -B
Will turn the rules back on.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkvIW+cACgkQrlYvE4MpobOmqACgvgMQ6oh6XFKuDhzTDIDftRFL xVkAoIbYMk88+HHHMxcJfkc+R/U2aVf7 =x7Ni -----END PGP SIGNATURE-----