I kept getting the following notice in apache /var/log/messages and many others same messages :
kernel: type=1400 audit(1422862414.790:3222): avc: denied { getattr } for pid=2484 comm="deliver" path="/var/panel/sieve/globalfilter.sieve" dev=dm-0 ino=659172 scontext=system_u:system_r:dovecot_deliver_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=lnk_file
Kernel : type=1400 audit(1422862549.898:3244): avc: denied { getattr } for pid=2320 comm="httpd" path="/var/panel/hostdata/admin/public_html/Mywebsite_com$$ai_com/admin/ajax.php" dev=dm-0 ino=5625763 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=file
kernel: type=1400 audit(1422862414.813:3229): avc: denied { lock } for pid=2484 comm="deliver" path="/var/panel/vmail/website.com/fail2ban/dovecot.index" index" dev=dm-0 ino=787081 scontext=system_u:system_r:dovecot_deliver_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=file
kernel: type=1400 audit(1422863078.135:3252): avc: denied { write } for pid=2740 comm="pop3" name="cur" dev=dm-0 ino=3794960scontext=system_u:system_r:dovecot_t:$cot_t:s0tcontext=system_u:object_r:var_t:s0 tclass=dir
I lately installed SELinux permissive mode , Help would be appreciates ..
THX
Best Answer
If you wish to translate this message into more human readable text, try to use
Then - you can use
to automate create of selinux module which allow this type of activity, and then
to install it into selinux.