diff --git a/audit-1.6.3-no-chmod.patch b/audit-1.6.3-no-chmod.patch
new file mode 100644
index 0000000..a2ccc1f
--- /dev/null
+++ b/audit-1.6.3-no-chmod.patch
@@ -0,0 +1,12 @@
+diff -urN audit/src/auditd-event.c audit-1.6.3/src/auditd-event.c
+--- audit/src/auditd-event.c	2007-12-26 21:13:24.000000000 +0100
++++ audit-1.6.3/src/auditd-event.c	2007-12-29 01:13:31.000000000 +0100
+@@ -742,8 +742,6 @@
+ 			return 1;
+ 		}
+ 	}
+-	fchmod(data->log_fd, 
+-			data->config->log_group ? S_IRUSR|S_IRGRP : S_IRUSR);
+ 	fchown(lfd, 0, data->config->log_group);
+ 
+ 	data->log_fd = lfd;
diff --git a/audit.spec b/audit.spec
index 9bdd31b..48c500f 100644
--- a/audit.spec
+++ b/audit.spec
@@ -1,16 +1,17 @@
 %define sca_version 0.4.5
-%define sca_release 1
+%define sca_release 2
 %define selinux_variants mls strict targeted
 %define selinux_policyver %(rpm -q selinux-policy | sed -e 's,^selinux-policy-\\([^/]*\\)$,\\1,')
 
 Summary: User space tools for 2.6 kernel auditing
 Name: audit
 Version: 1.6.3
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPLv2+
 Group: System Environment/Daemons
 URL: http://people.redhat.com/sgrubb/audit/
 Source0: %{name}-%{version}.tar.gz
+Patch0: audit-1.6.3-no-chmod.patch
 BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 BuildRequires: gettext-devel intltool libtool swig python-devel
 BuildRequires: kernel-headers >= 2.6.18
@@ -90,6 +91,7 @@ A graphical utility for editing audit configuration.
 
 %prep
 %setup -q
+%patch0 -p1 -b .no-chmod
 mkdir zos-remote-policy
 cp -p audisp/plugins/zos-remote/policy/audispd-zos-remote.* zos-remote-policy
 
@@ -288,6 +290,9 @@ fi
 %config(noreplace) %{_sysconfdir}/security/console.apps/system-config-audit-server
 
 %changelog
+* Sat Dec 29 2007 Miloslav Trmač <mitr@redhat.com> - 1.6.3-2
+- Don't fchmod() /dev/null to mode 0400 (#426934)
+
 * Thu Dec 27 2007 Steve Grubb <sgrubb@redhat.com> 1.6.3-1
 - Add kernel release string to DEAMON_START events
 - Fix keep_logs when num_logs option disabled (#325561)