[apparmor] [profile] netstat(8): plenty of DENIED messages; repeated "target=*" value.
John Johansen
john.johansen at canonical.com
Wed Dec 7 20:28:20 UTC 2016
On 12/07/2016 07:58 AM, daniel curtis wrote:
>
> Hi John
>
>>> no, capability sys_ptrace, isn't responsible for this entry (...)
>>> it looks like a kernel bug (...)
>
> Okay, thanks for an explanation. What should I do in such situation: report a bug etc.? And what about the second question about the IPv6 rules:
>
A bug would be good, I'll try fixing it soon and will need a bug to reference when I push the fix
> owner @{PROC}/*/net/raw6 r,
> owner @{PROC}/*/net/tcp6 r,
> owner @{PROC}/*/net/udp6 r,
>
> Can I remove them? I'm not using IP version 6 (IPv6).
>
if you aren't using ipv6 you should be able to drop them
> Best regards.
>
>
>
>
More information about the AppArmor
mailing list