[apparmor] [patch] smbd - /etc/netgroup
John Johansen
john.johansen at canonical.com
Thu Dec 29 19:40:23 UTC 2011
On 12/29/2011 08:38 AM, Christian Boltz wrote:
> Hello,
>
> Am Mittwoch, 28. Dezember 2011 schrieb John Johansen:
>> On 12/21/2011 10:06 AM, Christian Boltz wrote:
>>> smbd needs read access to /etc/netgroup.
>>>
>>> References: https://bugzilla.novell.com/show_bug.cgi?id=738041
>
>>> I propose the patch for trunk and the 2.7 branch.
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
>>> === modified file 'profiles/apparmor.d/usr.sbin.smbd'
>>> --- profiles/apparmor.d/usr.sbin.smbd 2011-11-01 17:28:49 +0000
>>> +++ profiles/apparmor.d/usr.sbin.smbd 2011-12-21 17:52:32 +0000
>>> @@ -21,6 +21,7 @@
>>>
>>> capability sys_tty_config,
>>>
>>> /etc/mtab r,
>>>
>>> + /etc/netgroup r,
>>>
>>> /etc/printcap r,
>>> /proc/*/mounts r,
>>> /proc/sys/kernel/core_pattern r,
>
>> This looks reasonable to me
>>
>> Acked-by: John Johansen<john.johansen at canonical.com>
>
> Thanks, commited.
>
> What about backporting[1] this the 2.7 branch? ;-)
>
sorry yes, if you want you can check it in to the 2.7 branch, or if
you'd rather I will.
More information about the AppArmor
mailing list