The VSEL Repository List flashes and cannot be modified
Technical Articles ID:
KB67360
Last Modified: 4/7/2017
Last Modified: 4/7/2017
The VSEL Repository List flashes and cannot be modified
Technical Articles ID:
KB67360
Last Modified: 4/7/2017 EnvironmentMcAfee VirusScan Enterprise for Linux
ProblemWhen attempting to configure the McAfee VirusScan Enterprise (VSEL) Repository list, the pane flashes, but changes cannot be made. ProblemThe Repository List in McAfee VSEL cannot be modified on some servers operating Security Enhanced Linux (SELinux). ProblemVarious errors are recorded in /var/log/messages. type=USER_AUTH msg=audit(1252416219.039:49): user pid=4925 uid=0 auid=0 subj=root:system_r:rpm_script_t:s0-s0:c0.c1023 msg='PAM: authentication acct="nails" : exe="/opt/NAI/LinuxShield/libexec/nailslogd" (hostname=?, addr=?, terminal=? res=success)' CauseMcAfee Agent communication is blocked in the SELinux environment. VSEL collects information from the McAfee Agent process to provide the repository details. SELinux can block the cma and logepo processes making it impossible for VSEL to obtain the necessary sitelist information.
SolutionModify SELinux rules to allow the necessary processes.
#chcon -t textrel_shlib_t /opt/McAfee/cma/bin/libppupdaterstub.so.4.0
#chcon -t textrel_shlib_t /opt/McAfee/cma/bin/libeventinterface.so.4.0 NOTE: These commands are used as examples only. McAfee cannot be held responsible for configuring your SELinux rules. The changes apply to the default targeted Policy and only to the lib files related to the cma process. Related InformationFor more information concerning SELinux, go to: http://selinuxproject.org. Affected ProductsGlossary of Technical Terms |
|