[apparmor] [patch] make tftp server for dnsmasq working

Christian Boltz apparmor at cboltz.de
Fri Apr 6 13:21:39 UTC 2012


If tftp server for dnsmasq is configured it won't serve the boot file.
This patch adds read permissions for /srv/tftpboot/

References: https://bugzilla.novell.com/show_bug.cgi?id=738905

I propose this patch for trunk and the 2.7 branch.

=== modified file 'profiles/apparmor.d/usr.sbin.dnsmasq'
--- profiles/apparmor.d/usr.sbin.dnsmasq
+++ profiles/apparmor.d/usr.sbin.dnsmasq
@@ -54,6 +54,9 @@
   # NetworkManager integration
   /{,var/}run/nm-dns-dnsmasq.conf r,
+  /srv/tftpboot/ r,
+  /srv/tftpboot/** r,
   # Site-specific additions and overrides. See local/README for 
   #include <local/usr.sbin.dnsmasq>


Christian Boltz
Meine Katze hat zu der Maus auch gesagt: "Kannst ganz beruhigt sein,
ich tu Dir nichts!" Und vom Fressen hat die Katze kein Ton gesagt.
[Rolf-Hubert Pobloth in suse-linux]

More information about the AppArmor mailing list