[apparmor] [patch] Dovecot imap needs to read /run/dovecot/mounts
Steve Beattie
steve at nxnw.org
Wed Sep 2 21:33:26 UTC 2015
On Sun, Aug 09, 2015 at 02:06:10PM +0200, Christian Boltz wrote:
> I propose this patch for trunk and 2.9.
>
> [ profiles-dovecot-imap-mounts.diff ]
>
> === modified file 'profiles/apparmor.d/usr.lib.dovecot.imap'
> --- profiles/apparmor.d/usr.lib.dovecot.imap 2014-12-22 16:41:59 +0000
> +++ profiles/apparmor.d/usr.lib.dovecot.imap 2015-08-09 11:55:59 +0000
> @@ -27,6 +27,7 @@
> @{HOME} r, # ???
> /usr/lib/dovecot/imap mr,
> /{,var/}run/dovecot/auth-master rw,
> + /{,var/}run/dovecot/mounts r,
>
> # Site-specific additions and overrides. See local/README for details.
> #include <local/usr.lib.dovecot.imap>
Interesting, I'm curious what it's used for, and why only the imap
process needs it.
But regardless, it looks reasonable:
Acked-by: Steve Beattie <steve at nxnw.org> for both.
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20150902/ced8a577/attachment.pgp>
More information about the AppArmor
mailing list