Denied access to hidden file /home
Posted: Thu Jun 12, 2014 2:32 amHello,
I have this log message:
However, in my policy "/home" is not hidden:
Thanks for your help,
Sorry for my english,
Best regards,
Romain
I have this log message:
- Code: Select all
Jun 11 11:22:41 localhost kernel: [63953.830219] grsec: (romain:U:/home/romain/Bin/Serveur) denied access to hidden file /home by /home/romain/Bin/Serveur[Serveur:5900] uid/euid:500/500 gid/egid:500/500, parent /home/romain/Bin/Monitor[Monitor:5891] uid/euid:500/500 gid/egid:500/500
However, in my policy "/home" is not hidden:
- Code: Select all
# Role: romain
subject /home/romain/Bin/Serveur o {
/ h
/etc h
/etc/ld.so.cache r
/etc/localtime r
/home
/home/romain r
/home/romain/Bin
/home/romain/Bin/Serveur rx
/home/romain/Bin/libz.so.1.2.3 rx
/home/romain/Registry h
/home/romain/Registry/confXML.sem r
/home/romain/Registry/confXML.xml r
/home/romain/Registry/logXML.bak w
/home/romain/Registry/logXML.sem r
/home/romain/Registry/logXML.tmp rwcd
/home/romain/Registry/logXML.xml rwcd
/home/romain/Supervision rw
/home/romain/Supervision/Developpement rw
/home/romain/Supervision/Developpement/*/0Sitric/CnfSitricOut/REPERES_MAJ.XML cdrw
/home/romain/zoneinfo h
/home/romain/zoneinfo/Europe/Paris r
/lib rx
/lib/modules h
/proc
/proc/bus h
/proc/kallsyms h
/proc/modules h
/proc/sys h
/usr h
/usr/lib/romain/libSrv.so rx
/usr/lib/romain/libUtilitaire.so rx
/usr/lib/libstdc++.so.6.0.13 rx
/var h
/var/log/romain rcdad
-CAP_ALL
bind 0.0.0.0/32:2501 stream icmp tcp
connect 127.0.0.1/32:2503 stream icmp tcp
}
Thanks for your help,
Sorry for my english,
Best regards,
Romain