[apparmor] [profile] netstat(8): plenty of DENIED messages; repeated "target=*" value.
John Johansen
john.johansen at canonical.com
Tue Dec 6 20:16:43 UTC 2016
On 12/06/2016 07:14 AM, daniel curtis wrote:
>
> Hi,
>
> Please forgive me, writing message one by one, but I think, that maybe 'deny capability sys_ptrace,' is responsible for such entries? I'm asking, because of operation="ptrace", which can be found in a log files etc.
>
> What do you think? Once again - I'm sorry.
>
no, capability sys_ptrace, isn't responsible for this entry, it is squarely on ptrace rules, more specifically no one rule is causing this it looks like a kernel bug in the enforcement or logging of ptrace rules
More information about the AppArmor
mailing list