Scalix Forums

Hello,

I get a lot of this (below) in my messages log, I tried googling this and searching through the KB, but no luck.. this is probably something simple, but not obvious to me. If it's normal, that's fine, but is there a way to shut off this logging somewhere so it doesn't fill up my messages log? I am trying to troubleshoot why I can only send to some external email addresses and under some circumstances I can get mail out to others (like if I forward a message from an internal email address).

Thanks,
Charles

May 17 05:26:35 scalix kernel: audit(1179401195.237:169): avc: granted { execmem } for pid=2635 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.237:170): avc: granted { execmem } for pid=2635 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.585:171): avc: granted { execmem } for pid=2634 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.849:172): avc: granted { execmem } for pid=2635 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.849:173): avc: granted { execmem } for pid=2635 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.849:174): avc: granted { execmem } for pid=2820 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:175): avc: granted { execmem } for pid=2522 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:176): avc: granted { execmem } for pid=2522 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:177): avc: granted { execmem } for pid=2821 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:178): avc: granted { execmem } for pid=2822 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:179): avc: granted { execmem } for pid=2522 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.861:180): avc: granted { execmem } for pid=2823 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.941:181): avc: granted { execmem } for pid=2625 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process
May 17 05:26:35 scalix kernel: audit(1179401195.953:182): avc: granted { execmem } for pid=2625 comm="java" scontext=system_u:system_r:initrc_t:s0 tcontext=system_u:system_r:initrc_t:s0 tclass=process

Hi Charles!

Not sure, but this could be something to do with turning off execmem auditallow. Also, can
you tell me, the value for SELINUX, in file /etc/selinux/config, if it is not set to permissive or
disabled, ideally disabled, edit this file and set it to disabled, once you have made the change
restart the machine.

Thanks,
Subir

That seems to have taken care of the problem. It was permissive, I set it to disabled.

Thank you,
Charles