[apparmor] [patch] make tftp server for dnsmasq working
Steve Beattie
steve at nxnw.org
Fri Apr 6 21:16:54 UTC 2012
On Fri, Apr 06, 2012 at 03:21:39PM +0200, Christian Boltz wrote:
> Hello,
>
> If tftp server for dnsmasq is configured it won't serve the boot file.
> This patch adds read permissions for /srv/tftpboot/
>
> References: https://bugzilla.novell.com/show_bug.cgi?id=738905
>
> I propose this patch for trunk and the 2.7 branch.
NACK, that's what the @{TFTP_DIR} variable definition at the top of
the profile is for.
(We can argue about what the default setting for that variable ought
to be...)
> === modified file 'profiles/apparmor.d/usr.sbin.dnsmasq'
> --- profiles/apparmor.d/usr.sbin.dnsmasq
> +++ profiles/apparmor.d/usr.sbin.dnsmasq
> @@ -54,6 +54,9 @@
> # NetworkManager integration
> /{,var/}run/nm-dns-dnsmasq.conf r,
>
> + /srv/tftpboot/ r,
> + /srv/tftpboot/** r,
> +
> # Site-specific additions and overrides. See local/README for
> details.
> #include <local/usr.sbin.dnsmasq>
> }
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20120406/2a392a23/attachment.pgp>
More information about the AppArmor
mailing list