Nagios Bug and Feature Tracker
Bug and Feature Tracker

Viewing Issue Simple Details Jump to Notes ] View Advanced ] Issue History ] Print ]
ID Category Severity Reproducibility Date Submitted Last Update
0000117 [Nagios Plugins] Other / Unknown minor always 2009-12-10 16:55 2012-09-18 09:11
Reporter omonnig View Status public  
Assigned To tonvoon
Priority normal Resolution open  
Status closed  
Summary 0000117: SELinux is preventing ping (ping_t) "read write"
Description Errors in /var/log/messages:

Dec 10 15:50:12 hostname setroubleshoot: SELinux is preventing ping (ping_t) "read write" to /usr/local/nagios/var/spool/checkresults/checkt30dqT (usr_t).
For complete SELinux messages. run sealert -l 0d9dbc11-44d8-49bd-a42a-c350a082fd48

The fix suggested by sealert does not fix the problem since the file name is random. Changing the security context of the directory does not work either.

Proposed solution:
Add to Nagios policy file:
require {
        type usr_t;
        type ping_t;
        class file { read write };
}

#============= ping_t ==============
allow ping_t usr_t:file { read write };

Additional Information Also see:
http://blog.pas.net.au/2009/05/fighting-with-selinux-and-nagios/ [^]
Tags No tags attached.
OS CentOS/RHEL
OS Version 5.3
Attached Files

- Relationships

-  Notes
(0000161)
ageric (reporter)
2010-04-26 15:06

The blog linked to talks about /bin/ping and some ping_t selinux policy stuff, so this must be plugin-related. Originally, this bug was posted in "Nagios Core", but the core never has and never will ship an SELinux policy file.

If the plugins project doesn't either, I suggest just closing it with "won't fix" and ask the reporter to re-file the bug with his distribution.
(0000537)
calestyo (reporter)
2012-07-31 19:30

Forwarded to: https://sourceforge.net/tracker/?func=detail&aid=3552859&group_id=29880&atid=397597 [^]

- Issue History
Date Modified Username Field Change
2009-12-10 16:55 omonnig New Issue
2009-12-10 16:55 omonnig Nagios Version => 3.2.0
2009-12-10 16:55 omonnig OS => CentOS/RHEL
2009-12-10 16:55 omonnig OS Version => 5.3
2010-04-26 15:00 ageric Status new => assigned
2010-04-26 15:00 ageric Assigned To => ageric
2010-04-26 15:03 ageric Project Nagios Core => Nagios Plugins
2010-04-26 15:04 ageric Assigned To ageric => tonvoon
2010-04-26 15:06 ageric Note Added: 0000161
2012-07-31 19:30 calestyo Note Added: 0000537
2012-09-18 09:11 ageric Status assigned => closed


Mantis 1.1.7[^]
Copyright © 2000 - 2008 Mantis Group
Powered by Mantis Bugtracker