Quote:
Originally Posted by agostino84
Problem in /var/log/audit/audit.log.1
|
".1" is a rotated logfile. For current problems see "/var/log/audit/audit.log". If you want to see messages scroll by try 'tail -f /var/log/audit/audit.log'.
Quote:
Originally Posted by agostino84
I'm not able to download the updates
|
Please show exact error messages if any.
Quote:
Originally Posted by agostino84
I'm not able to open the administration of the system by GUI.
|
Same here: please show exact error messages if any.
Quote:
Originally Posted by agostino84
type=ANOM_ABEND msg=audit(1222174623.498:608): auid=4294967295 uid=0 gid=7 ses=4294967295 subj=system_u:system_r:cupsd_t:s0-s0:c0.c1023 pid=7192 comm="ipp" sig=11
(..)
How could I do to resolve my problem?
|
Typical SE Linux policy warnings can be found by running 'grep AVC /var/log/audit/audit.log'. You can see what rules need to be adjusted in your local policy running it as 'grep AVC /var/log/audit/audit.log|audit2allow'.
Quote:
Originally Posted by agostino84
To restart auditd is useful?
|
No. Audtid only exists to log SE Linux AVC (Access Vector Cache) messages. For example if Auditd does not run the messages end up in /var/log/messages. In short: restarting Auditd does not change your policy nor does it "repair" or "fix" errors.