Ensure No Daemons are Unconfined by SELinux Daemons for which the SELinux policy does not contain rules will inherit the context of the parent process. Because daemons are launched during startup and descend from the 'init' process, they inherit the 'initrc_t' context. To check for unconfined daemons, run the following command: '$ sudo ps -eZ | egrep "initrc" | egrep -vw "tr|ps|egrep|bash|awk" | tr ':' ' ' | awk '{ print $NF }'' It should produce no output in a well-configured system.

Daemons which run with the 'initrc_t' context may cause AVC denials, or allow privileges that the daemon does not require. Fix: No Remediation Info