Package: selinux-policy-default
Version: 2:0.2.20100524-7+squeeze1
Severity: important
Similar to bug 599053 which is archived:
New install:
Error 1: sendmail...
Cannot run (postfix) sendmail under selinux
$ sudo ls -ldaZ /usr/sbin/postdrop /var/spool/postfix/maildrop
-r-xr-sr-x. 1 root postdrop system_u:object_r:bin_t:s0 14384 May
4 2011 /usr/sbin/postdrop
drwx-wx--T. 2 postfix postdrop unconfined_u:object_r:var_spool_t:s0 6 Feb
8 16:16 /var/spool/postfix/maildrop
$ /usr/sbin/sendmail -f t...@somewhere.com nowh...@elsewhere.com
postdrop: warning: mail_queue_enter: create file maildrop/113920.21397:
Permission denied
^C
type=AVC msg=audit(1328737132.109:486): avc: denied { write } for pid=21397
comm="postdrop" name="maildrop" dev=xvdc ino=273140255
scontext=unconfined_u:unconfined_r:user_mail_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_spool_t:s0 tclass=dir
Error 2: mailq
Running postfix mailq returns error.
$ mailq
postqueue: fatal: Connect to the Postfix showq service: Permission denied
type=AVC msg=audit(1328737230.494:487): avc: denied { write } for pid=21411
comm="postqueue" name="showq" dev=xvdc ino=387746
scontext=unconfined_u:unconfined_r:user_mail_t:s0-s0:c0.c1023
tcontext=unconfined_u:object_r:var_spool_t:s0 tclass=sock_file
type=SYSCALL msg=audit(1328737230.494:487): arch=c000003e syscall=42 success=no
exit=-13 a0=4 a1=7fff59526a90 a2=6e a3=8 items=0 ppid=13532 pid=21411
auid=4294967295 uid=1003 gid=1004 euid=1003 suid=1003 fsuid=1003 egid=111
sgid=111 fsgid=111 tty=pts1 ses=4294967295 comm="postqueue"
exe="/usr/sbin/postqueue"
subj=unconfined_u:unconfined_r:user_mail_t:s0-s0:c0.c1023 key=(null)
$ sudo ls -ladZ /var/spool/postfix/public/showq
srw-rw-rw-. 1 postfix postdrop unconfined_u:object_r:var_spool_t:s0 0 Feb 8
15:06 /var/spool/postfix/public/showq
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
