[apparmor] Fwd: Bug#761994: Extra profile for /usr/sbin/useradd , , missing access right for /etc/subuid and /etc/subgid
Seth Arnold
seth.arnold at canonical.com
Wed Sep 17 18:40:48 UTC 2014
On Wed, Sep 17, 2014 at 09:35:28AM -0700, intrigeri wrote:
> Hi,
>
> here's a bug report (with patch attached) that was reported on the
> Debian BTS:
>
I love when bugs come with patches :)
> 39a40,47
> > /etc/subuid rw,
> > /etc/subuid- rw,
> > /etc/subuid+ rw,
> > /etc/subuid.* rwl,
> > /etc/subgid rw,
> > /etc/subgid- rw,
> > /etc/subgid+ rw,
> > /etc/subgid.* rwl,
This style might be a bit 'loose' conpared to what we do lately but it
fits nicely with the style of that specific profile, which includes e.g.:
/etc/passwd* rwl,
/etc/shadow* rwl,
I think we should accept the patch as-is and perhaps tighten these things
a little bit further sometime in the future.
Acked-by: Seth Arnold <seth.arnold at canonical.com>
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20140917/fc586269/attachment.pgp>
More information about the AppArmor
mailing list