生成补丁:cat/var/log/audit/audit.log|grepzabbix_agent|grep被拒绝|audit2allow-Mzabbix_agent_redis打补丁:semodule-izabbix_agent_redis.pp分析工具yuminstallsetroubleshoot-serversealert-a/var/log/audit/audit.logvi11.txttype=AVCmsg=audit(1542879761.103:12204):avc:拒绝{name_connect}forpid=9766comm="python"dest=9001scontext=system_u:system_r:zabbix_agent_t:s0tcontext=system_u:object_r:tor_port_t:s0tclass=tcp_sockettype=SYSCALLmsg=audit(1542879761.103:12204):arch=c000003esyscall=42success=noexit=-13a0=3a1=7ffd89185810a2=10a3=faitems=0ppid=7405pid=9766auid=4294967295uid=997gid=994euid=997suid=997fsuid=997egid=994sgid=994fsgid=994tty=(none)ses=4294967295comm="python"exe="/usr/bin/python2.7"subj=system_u:system_r:zabbix_agent_t:s0key=(null)类型=PROCTITLE消息=审计(1542879761.103:12204):proctitle=2F7573722F62696E2F707974686F6E002F6574632F7A61626269782F7A61626269785F6167656E746432E6742F732F7461736B6D712E7079002D480031302E312E352E323530002D500039303031type=AVCmsg=audit(1542879770.143:12205):avc:denied{name_connect}forpid=9776comm="python"dest=9010scontext=system_u:system_r:zabbix_agent_t:s0tcontext=system_u:object_r:i18n_input_port_t:s0tclass=tcp_sockettype=SYSCALLmsg=audit(1542879770.143:12205):arch=c000003esyscall=42success=noexit=-13a0=3a1=7ffe8e88a0b0a2=10a3=faitems=0ppid=7405pid=9776auid=4294967295uid=997gid=994euid=997suid=997fsuid=997egid=994sgid=994fsgid=994tty=(none)ses=4294967295comm="python"exe="/usr/bin/python2.7"subj=system_u:system_r:zabbix_agent_t:s0key=(null)type=PROCTITLEmsg=audit(1542879770.143:12205):proctitle=2F7573722F62696E2F707974686F6E002F6574632F7A61626269782F7A61626269785F6167656E74642E642F736372697074732F7461736B6D712E7079002D480031302E312E352E323530002D500039303130sealert-a11.txtausearch-c'python'--raw|audit2allow-Mmy-python=========修改文件属性==============semanagefcontext-a-thttpd_sys_rw_content_t"/var/www/html/erp/company/0/js_cache(/.*)?";restorecon-R/var/www/html/erp/company/0/js_cache/=========修改类型容忍属性=========semanagefcontext-l|grepzabbixsemanagepermissive-azabbix_agent_t
