[systemd-devel] journald client SELinux denial - net_admin
Ian Pilcher
arequipeno at gmail.com
Sat Aug 16 14:33:22 UTC 2025
I am using the journald API for the first time, and I'm seeing the
following SELinux denial.
type=AVC msg=audit(1755354245.763:72049): avc: denied { net_admin }
for pid=65403 comm="acg-cfm" capability=12
scontext=system_u:system_r:cfm_t:s0 tcontext=system_u:system_r:cfm_t:s0
tclass=capability permissive=0
It isn't a critical error, as the program is still able to log to the
journal, but I am curious what it is trying to do (and what
functionality I will be missing if I don't allow it).
--
========================================================================
If your user interface is intuitive in retrospect ... it isn't intuitive
========================================================================
More information about the systemd-devel
mailing list