SELinux is preventing snmpd from sys_ptrace access on the cap_userns labeled snmpd_t
Issue
The following log messages sporadically occur in audit.log indicating that SELinux blocks snmpd from sys_ptrace access on the cap_userns labeled snmpd_t:
type=AVC msg=audit(1558795349.818:1209): avc: denied { sys_ptrace } for pid=782 comm="snmpd" capability=19 scontext=system_u:system_r:snmpd_t:s0 tcontext=system_u:system_r:snmpd_t:s0 tclass=cap_userns permissive=0
Environment
- Red Hat Enterprise Linux 8
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.