[apparmor] [profile] Audacious: abstractions/ubuntu-media-players and /var/log/syslog file issues.

[daniel curtis]

Hi Seth

>> I think I'd add the 'deny' rules. I don't know why an audio
>> player needs this and if it breaks the audio player, I'd pick a
>> player different.

OK. As I wrote in my first message, I'd removed this rule and Audacious
works normally - no issues, just these logs entries. In that case, I will
use 'deny /var/log/syslog r,' rule for this one. To silence these log
entries etc.

Honestly, I don't understand what should I do with rules from
'/etc/apparmor.d/abstractions/ubuntu-media-players' file. There is a rule
for Audacious: '/usr/bin/audacious2 Cxr -> sanitized_helper,*' *but
'/usr/bin/audacious2' does not exist in my system. There is:
'/usr/bin/audacious'.

Once again: I should remove '2' from this rule and leave only
'/usr/bin/audacious Cxr -> sanitized_helper,' (without '2') or add a rule
suggested by You: '/usr/bin/audacious Pxr,'? If this is a solution then
what about '-> sanitized helper'? Use or not?

Or maybe '/usr/bin/audacious Pxr,' rule should be used but in Audacious
profile? ('/etc/apparmor.d/usr.bin.audacious' file.) There is a "similar"
rule added by aa-genprof(8) utility:

/usr/bin/audacious mr,

I'm sorry for such naive questions, but I'm confused. Could You write, step
by step, what really should I do?

>> There are no plans to update to newer versions of Audacious
>> If there's a compelling reason to do an update you can look
>> into performing a Stable Release Update.

I was asking about update, because of Audacious v3.8.2 with fix for
vulnerability discovered in Game_Music_Emu. Nothing more, nothing less.
There was about six Audacious releases since v3.6.2 used in 16.04 LTS
Release.

Once again; I'm sorry for these naive questions and misunderstanding.
Thanks, best regards.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20170721/a6492f26/attachment.html>