[apparmor] [Bug 749727] Re: ntpd daemon request capability "dac_override"
c
749727 at bugs.launchpad.net
Fri Apr 8 22:19:02 UTC 2011
The entry is observed again, it seems that it cannot access /var/lib/ntp/ntp.drift.TEMP
syslog attached
** Attachment added: "syslog"
https://bugs.launchpad.net/apparmor/+bug/749727/+attachment/2002957/+files/syslog
--
You received this bug notification because you are a member of AppArmor
Developers, which is the registrant for AppArmor.
https://bugs.launchpad.net/bugs/749727
Title:
ntpd daemon request capability "dac_override"
Status in AppArmor Linux application security framework:
New
Status in NTP:
New
Bug description:
Environment: Ubuntu Desktop x64 10.10
The following message is observed in syslog
Apr 3 17:47:22 universe kernel: [ 20.235357] type=1400
audit(1301824042.778:24): apparmor="DENIED" operation="capable"
parent=1 profile="/usr/sbin/ntpd" pid=1459 comm="ntpd" capability=1
capname="dac_override"
either apparmor security profile is too restrictive or daemon "ntpd"
has bug
More information about the AppArmor
mailing list