How do I find out whether SELinux is denying access for any software?
When SELinux prevents any software from accessing a particular resource, for example when Firefox is denied access to /etc/shadow, it generates a message and logs it in /var/log/audit/audit.log or /var/log/messages if audit service is disabled. If the log contains “avc:denied” that means it is a SELinux policy denial. Note that you would need administrator privileges (root access) on your system to be able to read this log file.
