apollo13/gist:f7befdd8d0a53acb4d4e4f844bc03349

## gistfile1.txt
type=AVC msg=audit(1584721279.094:16607): avc:  denied  { getattr } for  pid=23999 comm="mailq" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:system_mail_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
type=SYSCALL msg=audit(1584721279.094:16607): arch=c000003e syscall=5 success=yes exit=0 a0=2 a1=7ffc3df53dd0 a2=7ffc3df53dd0 a3=55763bda4010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=989 sgid=989 fsgid=989 tty=(none) ses=4294967295 comm="mailq" exe="/usr/sbin/sendmail.postfix" subj=system_u:system_r:system_mail_t:s0 key=(null)ARCH=x86_64 SYSCALL=fstat AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="icinga" SGID="icinga" FSGID="icinga"
type=PROCTITLE msg=audit(1584721279.094:16607): proctitle="/usr/bin/mailq"
type=AVC msg=audit(1584721279.111:16608): avc:  denied  { write } for  pid=23999 comm="postqueue" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:postfix_postqueue_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
type=SYSCALL msg=audit(1584721279.111:16608): arch=c000003e syscall=59 success=yes exit=0 a0=55763bdc1890 a1=55763bdc18f0 a2=55763bdb8f20 a3=55763bda4010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=90 sgid=90 fsgid=90 tty=(none) ses=4294967295 comm="postqueue" exe="/usr/sbin/postqueue" subj=system_u:system_r:postfix_postqueue_t:s0 key=(null)ARCH=x86_64 SYSCALL=execve AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="postdrop" SGID="postdrop" FSGID="postdrop"
type=PROCTITLE msg=audit(1584721279.111:16608): proctitle="/usr/bin/mailq"
type=AVC msg=audit(1584721279.115:16609): avc:  denied  { getattr } for  pid=23999 comm="postqueue" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:postfix_postqueue_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
type=SYSCALL msg=audit(1584721279.115:16609): arch=c000003e syscall=5 success=yes exit=0 a0=2 a1=7ffd87201370 a2=7ffd87201370 a3=55ae6db57010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=90 sgid=90 fsgid=90 tty=(none) ses=4294967295 comm="postqueue" exe="/usr/sbin/postqueue" subj=system_u:system_r:postfix_postqueue_t:s0 key=(null)ARCH=x86_64 SYSCALL=fstat AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="postdrop" SGID="postdrop" FSGID="postdrop"
type=PROCTITLE msg=audit(1584721279.115:16609): proctitle="/usr/bin/mailq"
	type=AVC msg=audit(1584721279.094:16607): avc: denied { getattr } for pid=23999 comm="mailq" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:system_mail_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
	type=SYSCALL msg=audit(1584721279.094:16607): arch=c000003e syscall=5 success=yes exit=0 a0=2 a1=7ffc3df53dd0 a2=7ffc3df53dd0 a3=55763bda4010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=989 sgid=989 fsgid=989 tty=(none) ses=4294967295 comm="mailq" exe="/usr/sbin/sendmail.postfix" subj=system_u:system_r:system_mail_t:s0 key=(null)ARCH=x86_64 SYSCALL=fstat AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="icinga" SGID="icinga" FSGID="icinga"
	type=PROCTITLE msg=audit(1584721279.094:16607): proctitle="/usr/bin/mailq"
	type=AVC msg=audit(1584721279.111:16608): avc: denied { write } for pid=23999 comm="postqueue" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:postfix_postqueue_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
	type=SYSCALL msg=audit(1584721279.111:16608): arch=c000003e syscall=59 success=yes exit=0 a0=55763bdc1890 a1=55763bdc18f0 a2=55763bdb8f20 a3=55763bda4010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=90 sgid=90 fsgid=90 tty=(none) ses=4294967295 comm="postqueue" exe="/usr/sbin/postqueue" subj=system_u:system_r:postfix_postqueue_t:s0 key=(null)ARCH=x86_64 SYSCALL=execve AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="postdrop" SGID="postdrop" FSGID="postdrop"
	type=PROCTITLE msg=audit(1584721279.111:16608): proctitle="/usr/bin/mailq"
	type=AVC msg=audit(1584721279.115:16609): avc: denied { getattr } for pid=23999 comm="postqueue" path="pipe:[1306241]" dev="pipefs" ino=1306241 scontext=system_u:system_r:postfix_postqueue_t:s0 tcontext=system_u:system_r:icinga2_t:s0 tclass=fifo_file permissive=1
	type=SYSCALL msg=audit(1584721279.115:16609): arch=c000003e syscall=5 success=yes exit=0 a0=2 a1=7ffd87201370 a2=7ffd87201370 a3=55ae6db57010 items=0 ppid=23998 pid=23999 auid=4294967295 uid=992 gid=989 euid=992 suid=992 fsuid=992 egid=90 sgid=90 fsgid=90 tty=(none) ses=4294967295 comm="postqueue" exe="/usr/sbin/postqueue" subj=system_u:system_r:postfix_postqueue_t:s0 key=(null)ARCH=x86_64 SYSCALL=fstat AUID="unset" UID="icinga" GID="icinga" EUID="icinga" SUID="icinga" FSUID="icinga" EGID="postdrop" SGID="postdrop" FSGID="postdrop"
	type=PROCTITLE msg=audit(1584721279.115:16609): proctitle="/usr/bin/mailq"