When logrotate creates a new /var/log/messages is gets the wrong selinux context ie:
[root@hostname log]# ls -Z messages
-rw------- root root system_u
bject_r:file_t:s0 messages
[root@hostname log]# ls -Z messages.1
-rw------- root root system_u
bject_r:var_log_t:s0 messages.1
The same is true for other log files (maillog,secure,spooler)
logrotate version: logrotate-3.7.4-8
This behaviour prevents these logs being written when selinux is enabled.
I could potentially use restorecond or a cron job to fix them, but it doesn't seem like the right thing to do.
Steven