I checked audit logs and found below error message
Code:
type=AVC msg=audit(1470324541.165:210294): avc: denied { create } for pid=11644 comm="logrotate" name="catalina.out.0" scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:usr_t:s0 tclass=file
Was caused by:
Unknown - would be allowed by active policy
Possible mismatch between this policy and the one under which the audit message was generated.
Possible mismatch between current in-memory boolean settings vs. permanent ones.
type=AVC msg=audit(1470325921.157:98): avc: denied { write } for pid=2790 comm="logrotate" name="catalina.out.0" dev="vda1" ino=658223 scontext=system_u:system_r:logrotate_t:s0-s0:c0.c1023 tcontext=system_u:object_r:usr_t:s0 tclass=file
Was caused by:
Unknown - would be allowed by active policy
Possible mismatch between this policy and the one under which the audit message was generated.
Possible mismatch between current in-memory boolean settings vs. permanent ones.
I tried to create a logrotate_t.pp file still no luck. It's working only when I put selinux in permissive mode it's working
Code:
# getenforce
Permissive
Is there any alternate work around to deal this issue as I don't want to keep selinux in permissive mode.
Hello all.
Due to some reason I can not use HUP to rotate needed log files.
So I use the standard method:
cp $file $file.1
cat /dev/null > $file
But if Java application in this time writing the output to $file,
in the beginning of it appears many "^@^@^@^@^@^@".
How to avoid it? Or how... (6 Replies)
Hi
I am trying to create a simple function that implements log rotation
rotatelogs () {
file_name=$1
archive_dir=$2
retention_period=$3
find $archive_dir -name $file_name -mtime +$retention_period -exec rm -f {} \;
}
Issue i am facing is the file_name would be something like my... (3 Replies)
hi folk,
need advise regarding the log rotation, i have the logadm set at
30 2 * * * /usr/sbin/logadm
so it supposed to rotate once per day, but now it rotated twice!
but someone my log will rotate at 2:30 AM, but then another 2 hours later, it creates a new and rotate a new log again,... (2 Replies)
Hi Guys,
Good morning, I just want to know and collect ideas on this one. Regarding rotation of logs as I've observed it's not consistently functioning. I have a server with 8 Partitions, each partition has a dedicated directory for the logs that is needed and I set it every 5mins (300secs) the... (1 Reply)
Hi All!
I seem to have a problem with log rotation, unless I am doing something wrong, I have type the following command for testing purposes to see if the -s option works but he did not:
logadm -w /var/adm/messages -C 8 -c -s 512k -t '/var/adm/messages.$n' -z 1
the file is now at this... (7 Replies)
I have an application that rotate its log once it reaches 100mb and it keeps a total of 24 logs. I am trying to write a script to run daily to tar up the previous day logs files and move them to a different directory. here is a long listing of the logs in the directory:
-rw-r--r-- 1 user1 ... (6 Replies)
In Mavericks, Apple has apparently moved control of log rotation to ASL. There's a 'ttl' value to determine how long log files will stick around for. I can compress them, change the way they're named, limit them by size, etc. But the one thing I cannot find is how to NOT keep one log file per... (0 Replies)
Hi All,
I have a situation here ...
HACMP is configured with application monitoring script, which is generating messages .... which is running every minute ...
And every minute when monitoring script run, one one log file is generating .... and this log file is rotating ...
which is rotating... (1 Reply)