[apparmor] [patch] dnsmasq profile needs inet6 raw
Christian Boltz
apparmor at cboltz.de
Tue Dec 2 12:42:17 UTC 2014
Hello,
this patch adds "network inet6 raw," to the dnsmasq profile as
counterpart to the IPv4 "network inet raw,"
References: https://bugzilla.novell.com/show_bug.cgi?id=907870
=== modified file 'profiles/apparmor.d/usr.sbin.dnsmasq'
--- profiles/apparmor.d/usr.sbin.dnsmasq 2014-09-08 18:35:31 +0000
+++ profiles/apparmor.d/usr.sbin.dnsmasq 2014-12-02 12:39:59 +0000
@@ -24,6 +24,7 @@
capability net_admin, # for DHCP server
capability net_raw, # for DHCP server ping checks
network inet raw,
+ network inet6 raw,
signal (receive) peer=/usr/sbin/libvirtd,
ptrace (readby) peer=/usr/sbin/libvirtd,
Regards,
Christian Boltz
--
> vi wird nie mein Freund, seine zwei Modi sind einfach nicht mein Fall.
Schade, wenn man sich erst einmal daran gewöhnt hat, kann man mit dem
Ding fliegen. [> Helga Fischer und Bernd Brodesser in suse-linux]
More information about the AppArmor
mailing list