[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Security question about daemon-init



Apologies in advance for cross-group posting.

I have enabled selinux  and after carefully allowing certain permissions, I have put my system in enforcing mode

I do see a suspicious line like this


[  115.089395] audit: type=1400 audit(1693329979.841:11): avc:  denied  { getattr } for  pid=3104 comm="daemon-init" path="/home/bcv/.thunderbird" dev="dm-5" ino=257 scontext=system_u:system_r:virtd_t:s0 tcontext=system_u:object_r:thunderbird_home_t:s0 tclass=lnk_file permissive=0

I am not sure why on earth would daemon-init try to read .thunderbird directory under my homedir .

Has anyone faced this problem?

What is this daemon-init program and why does it want access to my home thunderbird directory ?

Regards
Bhasker C V



Reply to: