| 查看: 314 | 回复: 0 | |||
[交流]
【求助】添加授权时出现的警告!
|
|
这是什么原因呢?这跟授权文件经常失效有没有关系? 错误如下: 摘要: SELinux is preventing lp_admin_gui from loading /home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so which requires text relocation. 详细的描述: [SELinux is in permissive mode, the operation would have been denied but was permitted due to permissive mode.] The lp_admin_gui application attempted to load /home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so which requires text relocation. This is a potential security problem. Most libraries do not need this permission. Libraries are sometimes coded incorrectly and request this permission. The SELinux Memory Protection Tests (http://people.redhat.com/drepper/selinux-mem.html) web page explains how to remove this requirement. You can configure SELinux temporarily to allow /home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so to use relocation as a workaround, until the library is fixed. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. 正在允许访问: If you trust /home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so to run correctly, you can change the file context to textrel_shlib_t. "chcon -t textrel_shlib_t '/home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so'" You must also change the default file context files on the system in order to preserve them even on a full relabel. "semanage fcontext -a -t textrel_shlib_t '/home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so'" 以下命令将允许这个权限: chcon -t textrel_shlib_t '/home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so' 附加的信息: 源上下文 user_u:system_r:unconfined_t 目标上下文 user_u  bject_r:user_home_t目标对象 /home/ms5/Accelrys/LicensePack/linux/lib/libls_lic ense_g323.so [ file ] Source lp_admin_gui Source Path /home/ms5/Accelrys/LicensePack/linux/bin/rt_bin/lp _admin_gui Port <未知的> Host localhost.localdomain Source RPM Packages Target RPM Packages 策略 RPM selinux-policy-2.4.6-255.el5 Selinux 激活 True 策略类型 targeted MLS 激活 True 强制模式 Permissive 插件名称 allow_execmod 主机名 localhost.localdomain 平台 Linux localhost.localdomain 2.6.18-164.el5xen #1 SMP Thu Sep 3 04:03:03 EDT 2009 x86_64 x86_64 警告记数 7 First Seen 2010年08月26日 星期四 19时05分40秒 Last Seen 2010年11月16日 星期二 12时06分54秒 Local ID 7d387ecc-6d06-42b1-a4db-55bd534bf4ac 行数 原始 Audit 消息 host=localhost.localdomain type=AVC msg=audit(1289880414.697:165): avc: denied { execmod } for pid=9699 comm="lp_admin_gui" path="/home/ms5/Accelrys/LicensePack/linux/lib/libls_license_g323.so" dev=dm-0 ino=112755416 scontext=user_u:system_r:unconfined_t:s0 tcontext=user_u bject_r:user_home_t:s0 tclass=filehost=localhost.localdomain type=SYSCALL msg=audit(1289880414.697:165): arch=40000003 syscall=125 success=yes exit=0 a0=f7d2c000 a1=1ea000 a2=5 a3=ffbd07f0 items=0 ppid=9596 pid=9699 auid=502 uid=502 gid=100 euid=502 suid=502 fsuid=502 egid=100 sgid=100 fsgid=100 tty=pts1 ses=23 comm="lp_admin_gui" exe="/home/ms5/Accelrys/LicensePack/linux/bin/rt_bin/lp_admin_gui" subj=user_u:system_r:unconfined_t:s0 key=(null) |
回复此楼» 猜你喜欢
有没有人能给点建议
已经有5人回复
-
假如你的研究生提出不合理要求
已经有12人回复
-
实验室接单子
已经有7人回复
-
全日制(定向)博士
已经有5人回复
-
萌生出自己或许不适合搞科研的想法,现在跑or等等看?
已经有4人回复
-
Materials Today Chemistry审稿周期
已经有4人回复
-
参与限项
已经有3人回复
-
对氯苯硼酸纯化
已经有3人回复
-
所感
已经有4人回复
-
要不要辞职读博?
已经有7人回复