-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
Normal
-
sst_security_special_projects
-
ssg_security
-
False
-
-
If docs needed, set a value
-
-
x86_64
Description of problem:
"res=failed" entries in audit.log for regular cronjobs
Version-Release number of selected component (if applicable):
[root@cs9man ~]# cat /etc/os-release
NAME="CentOS Stream"
VERSION="9"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="9"
PLATFORM_ID="platform:el9"
PRETTY_NAME="CentOS Stream 9"
ANSI_COLOR="0;31"
LOGO="fedora-logo-icon"
CPE_NAME="cpe:/o:centos:centos:9"
HOME_URL="https://centos.org/"
BUG_REPORT_URL="https://bugzilla.redhat.com/"
REDHAT_SUPPORT_PRODUCT="Red Hat Enterprise Linux 9"
REDHAT_SUPPORT_PRODUCT_VERSION="CentOS Stream"
[root@cs9man ~]#
How reproducible:
Anytime
Steps to Reproduce:
1.
- adduser -u 1000 mb-mig-test
- su - mb-mig-test
2.
$ cat > /tmp/atable
00,05,10,15,20,25,30,35,40,45,50,55 * * * * date > /tmp/test.out
$ crontab < /tmp/atable
3.
- tail -20 /var/log/audit/audit.log | grep mb-mig-test | grep fail
type=CRED_ACQ msg=audit(1657899601.966:8238): pid=33929 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='op=PAM:setcred grantors=? acct="mb-mig-test" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed'UID="root" AUID="unset"
[root@cs9man ~]#
Actual results:
res=failed entries in audit.log for regular cronjobs
Expected results:
res=success entries in audit.log for regular cronjobs
Additional info:
Same problem occurs in RHEL9
- external trackers