Permissions Problem

Matt Luettgen mluettgen at nuvio.com
Mon Jun 27 16:50:50 CEST 2005


Welcome to SELinux hell! I'm to lazy to fix selinux so I usually disable it, just run 'setenforce 0' as root, also edit /etc/sysconfig/selinux to make it permanent (you can only set enforce to passive without a reboot, to totally disable it you edit /etc/sysconfig/selinux and reboot)

M

On Mon, 27 Jun 2005 09:45:53 -0500
"J. Ryan Zambon" <rzambon at sjprep.org> wrote:

> Good morning,
> 
> I'm running Apache 2, Fedora Core 3, Nagios v2b3 under root.
> Nagios runs under username "nagios" in groupname "nagios".
> Apache is also a member of "nagios".
> Both apache and nagios usernames are also in a group named "nagioscmd".
> 
> Tailed server:
> 
> ###############
> [root at nagios libexec]# tail /var/log/messages
> Jun 27 10:36:48 nagios kernel: audit(1119883008.088:0): avc:  denied  { execute } for  pid=4794 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:48 nagios kernel: audit(1119883008.236:0): avc:  denied  { execute } for  pid=4795 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:48 nagios kernel: audit(1119883008.420:0): avc:  denied  { execute } for  pid=4796 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:48 nagios kernel: audit(1119883008.571:0): avc:  denied  { execute } for  pid=4797 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:48 nagios kernel: audit(1119883008.715:0): avc:  denied  { execute } for  pid=4798 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:48 nagios kernel: audit(1119883008.882:0): avc:  denied  { execute } for  pid=4799 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:49 nagios kernel: audit(1119883009.022:0): avc:  denied  { execute } for  pid=4800 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:49 nagios kernel: audit(1119883009.167:0): avc:  denied  { execute } for  pid=4801 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:49 nagios kernel: audit(1119883009.326:0): avc:  denied  { execute } for  pid=4802 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> Jun 27 10:36:49 nagios kernel: audit(1119883009.496:0): avc:  denied  { execute } for  pid=4803 exe=/usr/sbin/httpd name=histogram.cgi dev=dm-0 ino=2641211 scontext=root:system_r:httpd_t tcontext=root:object_r:usr_t tclass=file
> ###########
> 
> ls -la of libexec directory:
> 
> ########
> [root at nagios libexec]# ls -la
> total 1932
> drwxr-xr-x  2 nagios nagios  4096 Jun 24 12:22 .
> drwxr-xr-x  8 nagios nagios  4096 Jun 24 12:22 ..
> -rwxr-xr-x  1 nagios nagios  2274 Jun 24 12:22 check_breeze
> -rwxr-xr-x  1 nagios nagios 51179 Jun 24 12:22 check_by_ssh
> -rwxr-xr-x  1 nagios nagios 50032 Jun 24 12:22 check_dhcp
> -rwxr-xr-x  1 nagios nagios 49225 Jun 24 12:22 check_dig
> -rwxr-xr-x  1 nagios nagios 58774 Jun 24 12:22 check_disk
> -rwxr-xr-x  1 nagios nagios  8049 Jun 24 12:22 check_disk_smb
> -rwxr-xr-x  1 nagios nagios 51894 Jun 24 12:22 check_dns
> -rwxr-xr-x  1 nagios nagios 24200 Jun 24 12:22 check_dummy
> -rwxr-xr-x  1 nagios nagios  3095 Jun 24 12:22 check_file_age
> -rwxr-xr-x  1 nagios nagios  6400 Jun 24 12:22 check_flexlm
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_ftp -> check_tcp
> -rwxr-xr-x  1 nagios nagios 48597 Jun 24 12:22 check_hpjd
> -rwxr-xr-x  1 nagios nagios 97198 Jun 24 12:22 check_http
> -rwxr-xr-x  1 nagios nagios 33313 Jun 24 12:22 check_icmp
> -rwxr-xr-x  1 nagios nagios 15292 Jun 24 12:22 check_ifoperstatus
> -rwxr-xr-x  1 nagios nagios 12858 Jun 24 12:22 check_ifstatus
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_imap -> check_tcp
> -rwxr-xr-x  1 nagios nagios  7437 Jun 24 12:22 check_ircd
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_jabber -> check_tcp
> -rwxr-xr-x  1 nagios nagios 40684 Jun 24 12:22 check_ldap
> lrwxrwxrwx  1 root   root      10 Jun 24 12:22 check_ldaps -> check_ldap
> -rwxr-xr-x  1 nagios nagios 37999 Jun 24 12:22 check_load
> -rwxr-xr-x  1 nagios nagios  5943 Jun 24 12:22 check_log
> -rwxr-xr-x  1 nagios nagios 20750 Jun 24 12:22 check_mailq
> -rwxr-xr-x  1 nagios nagios 31970 Jun 24 12:22 check_mrtg
> -rwxr-xr-x  1 nagios nagios 31112 Jun 24 12:22 check_mrtgtraf
> -rwxr-xr-x  1 nagios nagios 43122 Jun 24 12:22 check_mysql
> -rwxr-xr-x  1 nagios nagios 37632 Jun 24 12:22 check_nagios
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_nntp -> check_tcp
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_nntps -> check_tcp
> -rwxr-xr-x  1 nagios nagios 50744 Jun 24 12:22 check_nt
> -rwxr-xr-x  1 nagios nagios 13283 Jun 24 12:22 check_ntp
> -rwxr-xr-x  1 nagios nagios 55458 Jun 24 12:22 check_nwstat
> -rwxr-xr-x  1 nagios nagios  8293 Jun 24 12:22 check_oracle
> -rwxr-xr-x  1 nagios nagios 44614 Jun 24 12:22 check_overcr
> -rwxr-xr-x  1 nagios nagios 40352 Jun 24 12:22 check_pgsql
> -rwxr-xr-x  1 nagios nagios 54374 Jun 24 12:22 check_ping
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_pop -> check_tcp
> -rwxr-xr-x  1 nagios nagios 49001 Jun 24 12:22 check_procs
> -rwxr-xr-x  1 nagios nagios 41450 Jun 24 12:22 check_real
> -rwxr-xr-x  1 nagios nagios  9712 Jun 24 12:22 check_rpc
> -rwxr-xr-x  1 nagios nagios  1176 Jun 24 12:22 check_sensors
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_simap -> check_tcp
> -rwxr-xr-x  1 nagios nagios 71625 Jun 24 12:22 check_smtp
> -rwxr-xr-x  1 nagios nagios 56001 Jun 24 12:22 check_snmp
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_spop -> check_tcp
> -rwxr-xr-x  1 nagios nagios 38656 Jun 24 12:22 check_ssh
> -rwxr-xr-x  1 nagios nagios 39373 Jun 24 12:22 check_swap
> -rwxr-xr-x  1 nagios nagios     0 Jun 27 10:23 check_tcp
> -rwxr-xr-x  1 nagios nagios 40623 Jun 24 12:22 check_time
> -rwxr-xr-x  1 nagios nagios 38822 Jun 24 12:22 check_udp
> lrwxrwxrwx  1 root   root       9 Jun 24 12:22 check_udp2 -> check_tcp
> -rwxr-xr-x  1 nagios nagios 48306 Jun 24 12:22 check_ups
> -rwxr-xr-x  1 nagios nagios 35134 Jun 24 12:22 check_users
> -rwxr-xr-x  1 nagios nagios  3024 Jun 24 12:22 check_wave
> -rwxr-xr-x  1 nagios nagios 35078 Jun 24 12:22 negate
> -rwxr-xr-x  1 nagios nagios 33845 Jun 24 12:22 urlize
> -rwxr-xr-x  1 nagios nagios  2469 Jun 24 12:22 utils.pm
> -rwxr-xr-x  1 nagios nagios   868 Jun 24 12:22 utils.sh
> #########
> 
> Not sure what the problem is. Thanks in advance!
> 
> J. Ryan Zambon
> rzambon at sjprep.org 
> 
> 
> 
> 
> ________________________________________________________________
> Sent via the WebMail system at mail.sjprep.org
> 
> 
>  
>                    
> 
> 
> -------------------------------------------------------
> SF.Net email is sponsored by: Discover Easy Linux Migration Strategies
> from IBM. Find simple to follow Roadmaps, straightforward articles,
> informative Webcasts and more! Get everything you need to get up to
> speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
> ::: Messages without supporting info will risk being sent to /dev/null
> 


-- 


-------------------------------------------------------
SF.Net email is sponsored by: Discover Easy Linux Migration Strategies
from IBM. Find simple to follow Roadmaps, straightforward articles,
informative Webcasts and more! Get everything you need to get up to
speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null





More information about the Users mailing list