Fedora Security :: NTPD Error Report At Startup Of Machine
Jan 25, 2011
I've been trying to make sense out of this error report. I get it every once in a while on startup of my machine.
Code:
Summary:
SELinux is preventing /usr/sbin/ntpd access to a leaked netlink_route_socket
file descriptor.
Detailed Description:
[ntpd has a permissive type (ntpd_t). This access was not denied.]
SELinux denied access requested by the ntpd command. It looks like this is either a leaked descriptor or ntpd output was redirected to a file it is not allowed to access. Leaks usually can be ignored since SELinux is just closing the leak and reporting the error. The application does not use the descriptor, so it will run properly. If this is a redirection, you will not get output in the netlink_route_socket. You should generate a bugzilla on selinux-policy, and it will get routed to the appropriate package. You can safely ignore this avc.
Allowing Access:
You can generate a local policy module to allow this access - see FAQ [URL]
Additional Information:
Source Context system_u:system_r:ntpd_t:s0
Target Context system_u:system_r:firstboot_t:s0
Target Objects netlink_route_socket [ netlink_route_socket ]
Source ntpd
Source Path /usr/sbin/ntpd
Port <Unknown>
Host localhost.localdomain
Source RPM Packages ntp-4.2.6p2-7.fc14
Target RPM Packages
Policy RPM selinux-policy-3.9.7-3.fc14
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Plugin Name leaks
Host Name localhost.localdomain
Platform Linux localhost.localdomain 2.6.35.6-45.fc14.i686
#1 SMP Mon Oct 18 23:56:17 UTC 2010 i686 i686
Alert Count 1
First Seen Fri 21 Jan 2011 02:01:09 AM PST
Last Seen Fri 21 Jan 2011 02:01:09 AM PST
Local ID fb73799a-8d3c-4d9a-8c06-a0c1b6d4814e
Line Numbers
I am facing issue in ntp, it is getting killed frequently. see below error; # /etc/init.d/ntpd status ntpd dead but pid file exists After starting service it is works fine but again after sometimes it get in dead postition.
have a script that will report whenever a file is copied? Some useful information would be the time/date, user, and destination whenever a file is copied. I've looked into the stat command, but it does not distinguish between copy and access.
After running Code: nessus-fetch --register <Activation Code>
I got Code: nessus-update-plugins could not be found in your $PATH When I try to run a scan on localhost I get the message "nessusd returned an empty report".
Here's the entry in nessusd.messages Code: [Mon May 25 00:30:03 2009][13188] user mickey.harvey : testing 127.0.0.1 (127.0.0.1) [13189] [Mon May 25 00:30:04 2009][13189] Finished testing 127.0.0.1. Time : 0.03 secs [Mon May 25 00:30:04 2009][13188] user mickey.harvey : test complete [Mon May 25 00:30:04 2009][13188] Total time to scan all hosts : 1 seconds [Mon May 25 00:30:04 2009][13188] user mickey.harvey : Kept alive connection
I would like to get the scan working and make sure that nessus is updating the plugins. I have been looking though the nessus documentation and tried searching on Goggle without any success.
I'm running some vm's in FC12 with kvm-qemu and using virt machine manager. I'd like to have some ports automatically forward on startup and be able to add redirections on the fly. Redirection on the fly is talked about here, but I am getting lost on what should be basic instructions.[URL]
As far as startup, In the past I just ran qemu from the cli and manually specified redirection with redir. I can't figure out how to do it with The virt machine manager which I am using to start my VM's now. I do not want the guests to see the host. From cli startup without virt machine manager, it looked like this: qemu -m 256 -hda vm.img -redir tcp:5555::80 -redir tcp:5556::445 &
I am an administrator of a student lab with 20 PCs. I was thinking of a way to protect those machines in the long run with the presence of some students with destructive behaviour. The most suitable solution to install a Linux OS and use virtual machines to load Microsoft OS. This way once the OS fails I can simply replace the VM with a clone that was previously made.
The point is that most students have no experience with Linux, that's why I need to load the Virtual machine automatically at login and in full-screen view so that The startup process ends up in Microsoft OS through the virtual machine (VMWare based) in Linux platform.
update : I'm using Fedora13 Linux distribution. I believe that part of launching the VM in full-screen is more difficult than automatically launching VMWare at startup. Is there some way I can tell VMWare to launch a particular virtual machine in full-screen when it starts on boot?
I can see my Suse 11 severs, ftp to it and sit up share folder but can't login as user from workstation as users. It IBM eServer 235 2X3.8Ghz Xeon, 6GB of memory with 6X73.6 Hard Drive got this message error; The following security events occurred since Thu Jan 20 19:29:40 2011:
type=APPARMOR_DENIED msg=audit(1295580702.142:653): operation="inode_permission" requested_mask="r::" denied_mask="r::" fsuid=0 name="/var/lib/samba/unexpected.tdb" pid=4873 parent=1 profile="/usr/sbin/nscd" type=APPARMOR_DENIED msg=audit(1295580702.234:654): operation="inode_permission" requested_mask="r::" denied_mask="r::" fsuid=0 name="/var/lib/samba/unexpected.tdb" pid=4873 parent=1 profile="/usr/sbin/nscd" Charles E. Hightower Ht280@yahoo.com charles@santech.net Charles E. Hightower - LinkedIn
I have several (say, 50) machines running ubuntu.I want them to be centrally controlled.That is, each machine should get permit from central machine before installing any software etc.I googled quite a lot but could not find the solution...
I have a F11 box serving xdmcp. I log into them machine remotely with xming. As far as I can tell, all x clients work fine, EXCEPT for sealert. I get occasional selinux alerts, but I cannot use the sealert browser on my remote machine. When I try to run the browser, I get this: sealert -V -b
2010-03-05 11:27:49,841 [dbus.proxies.ERROR] Introspect error on :1.61:/org/fedoraproject/Setroubleshootd: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.NoReply: Message did not receive a reply (timeout by message bus) 2010-03-05 11:27:49,842 [dbus.proxies.DEBUG] Executing introspect queue due to error 2010-03-05 11:27:49,842 [dbus.ERROR] could not start dbus: org.freedesktop.DBus.Error.ServiceUnknown: The name :1.61 was not provided by any .service files
I see the bug at [URL].. but it does not mention the browser, nor does it say what the fix/workaround is..Im going to stab in the dark and start relabeling things, but anyone know what's really wrong?
it's not a real bug/error in Ubuntu per se, but i found an error in the spanish language pack of Ubuntu.There were some words that weren't translated right.I was wondering how to report/change that.I actually found it in the Ubuntu 9.10 spanish language pack, so i don't know if it's been fixed for lucid, but i thought it would be good to know either way just in case i find some other translation errors.
Has anyone got experience connecting a linux machine to a Microsoft VPN server using RSA authentication? What puzzles me perhaps most about this topic is the absolute dirth of information. If it is not possible, can anyone tell me why?
Logwatch has been showing me there is kernal errors present on my server.Below is the full report from logwatch, please let me know if there is anything I should be aware of and fix.
Every time I selected addons and Mysql i got a notice of a bug report. So i gave in and only selected server and it is installing. I hope i can read enough to get it installed..
just migrated to Lucid from Jaunty and noticed that the login startup screen looks more like windoze (shows all authorized users).One of the endearing security checks with Unix was that if you had access to a console you had guess both userid AND password - the system wouldn't tell you which was wrong.I feel that we have lowered security by making the list of authorized users visible on a console. Is there any way to turn it off and force users to enter both userid and password?
I got the error: "An unrecoverable processor error has been encountered. The virtual machine will reset now." I have edited the options in installation screen with adding noreplace-paravirt at the end of boot parameters. but still have this error and FC installation does not continue.
I have wordpress server running on my machine and I have SELinux enabled for enforcing/targeted. I am unable to insert images, music, etc from the add new post field on the wordpress dashboard. I receive the following error:
image.jpg has failed to upload due to an error The uploaded file could not be moved to /var/www/html/wordpress/wp-content/uploads/2010/10. When I disable SELinux completely, it works fine. Does anyone know what Boolean I need to check to resolve this issue?
I am getting an error when i generat a report with squid's report generator ( sarg )is there a tool or way that i can find where in the log file the error is, the log file is 61442 lines, and it's gonna take me forever to find the error,
Firefox 3.1 beta 3 won't load. When I open the application, the little bouncy icon bounces, and the task manager shows "Firefox Web Browser", but this only stays this way for about 15 seconds then just goes away. No error or anything.
I've had this identical problem when I try to open certain programs with Wine too. Is there some place I can find a detailed error report on these failures?
Whenever I put ssh into remote machine am getting the following messages. Write Failed: Broken Pipe (After logged into that machine ) Read Socket Failed: Connection reset by peer (While trying to log in ) Also known_hosts file is changed frequently.
i have fedora 11 installed on my laptop. i used to run another linux flavor through virtual machine manager but it is giving error. i have just tried it with different flavors. i tired it with BACKTRACK, UBUNTU AND MINT(live cd) each time it gives error. last time i tried with QEMU type connection as loca installation media(iso). with the MINT iso it gave the error.
I'm a CS Major that wanted to experiment with Linux more. Great idea right?! Well, long story short, I have a HP Dv9815nr Entertainment Notebook PC with Vista pre-installed. I have 2 local SATA HDDs and installed Vista(250GB) and Fedora 12(160GB)(respectively). In order to make life simple for booting purposes, I partitioned the Vista drive to include a 3GB sector for the Fedora Boot partition, so that Grub would run properly.
I recently discovered Sun's VirtualBox (Open Source Virtualization software) and installed several flavors of linux inside of this application on the Vista Disk. Naturally, I installed Fedora 12 in the Virtual Box and reformatted the Linux drive (160GB + 3GB Boot partition).
Everything was fine and then I rebooted. Now I get a Grub error on boot. "Error 22 : partition not found". I would like to restore the Vista MBR using the Fedora 12 Live cd, but I can't repartition the Vista drive under the live installation.
Also, I extended the Vista partition to include the 3GB previously used for the Fedora Boot Sector.
I installed Ubuntu 10.04 as virtual machine and now there is slight problem When I turn on machine I see VM bios but then VM stops and cursor (underscore) starts blinking. I waits like this for 2 minutes and then proceeds normally. There might be VM bios seen again. Since here, no slowness is noticed. It shuts down really fast
I'm using VMware workstation 7.0 and VMplayer 3.0.1, hard disk type used is SCSI.
