[apparmor] [patch] profiles: postfix/master also needs lock permissions for master.pid
Christian Boltz
apparmor at cboltz.de
Wed Jun 24 20:56:01 UTC 2015
Hello,
postfix/master also needs lock permissions for master.pid
reported by darix some weeks ago, and also confirmed on my own servers.
I propose this patch for trunk and 2.9.
[ profiles-postfix-master-pid-k.diff ]
=== modified file 'profiles/apparmor/profiles/extras/usr.lib.postfix.master'
--- profiles/apparmor/profiles/extras/usr.lib.postfix.master 2014-06-27 04:32:56 +0000
+++ profiles/apparmor/profiles/extras/usr.lib.postfix.master 2015-06-08 12:44:53 +0000
@@ -21,7 +21,7 @@
capability dac_override,
/etc/postfix/master.cf r,
- /{var/spool/postfix/,}pid/master.pid rw,
+ /{var/spool/postfix/,}pid/master.pid rwk,
/{var/spool/postfix/,}private/* wl,
/{var/spool/postfix/,}private/tlsmgr rwl,
/{var/spool/postfix/,}public/{cleanup,flush,pickup,qmgr,showq,tlsmgr} rwl,
Regards,
Christian Boltz
--
"Golden rule of Sourcecode: 50% are comments, and the other 50% bugs!"
More information about the AppArmor
mailing list