[Bug 2079785] Re: apt / apt-get install produce spurious Warning
Colin Foster
2079785 at bugs.launchpad.net
Fri Sep 6 05:26:58 UTC 2024
** Description changed:
A new minimal install of Ubuntu Server 24.04 has started giving a W
message on completion of all installs:
W: Download is performed unsandboxed as root as file
'/var/cache/apt/archives/partial/<PACKAGE_NAME>' couldn't be accessed by
user '_apt'. - pkgAcquire::Run (13: Permission denied)
This seems to be spurious, as on checking
/var/cache/apt/archives/partial has correct _apt:root ownership, mode
700.
I have set ownership on everything from /var/cache/apt down to
_apt:root, but it makes no difference - the warning continues to be
emitted on all installs, using both apt and apt-get.
From widespread discussion I've found online, this seems to be a common
issue with no obvious cause or solution other than to make root the
sandbox user in /etc/apt/apt.conf.d, which seem to me to not be a
solution at all! I agree that _apt should be used with reduced
- privileges for downlaoading, but it seems that something in the changes
+ privileges for downloading, but it seems that something in the changes
you made to implement this is broken.
I'll attach my ubuntu-bug report here, as the machine which generated it
is headless.
Thanks
- Colin
+ C
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/2079785
Title:
apt / apt-get install produce spurious Warning
Status in apt package in Ubuntu:
New
Bug description:
A new minimal install of Ubuntu Server 24.04 has started giving a W
message on completion of all installs:
W: Download is performed unsandboxed as root as file
'/var/cache/apt/archives/partial/<PACKAGE_NAME>' couldn't be accessed
by user '_apt'. - pkgAcquire::Run (13: Permission denied)
This seems to be spurious, as on checking
/var/cache/apt/archives/partial has correct _apt:root ownership, mode
700.
I have set ownership on everything from /var/cache/apt down to
_apt:root, but it makes no difference - the warning continues to be
emitted on all installs, using both apt and apt-get.
From widespread discussion I've found online, this seems to be a
common issue with no obvious cause or solution other than to make root
the sandbox user in /etc/apt/apt.conf.d, which seem to me to not be a
solution at all! I agree that _apt should be used with reduced
privileges for downloading, but it seems that something in the changes
you made to implement this is broken.
The only non-standard thing about the install I can think of is that
/var is symlinked to /zen/var/ where /zen mounts another partition (we
prefer to keep data directories such as /var, /srv and /tmp off the
system volume). However, we have the same arrangement on other systems
and don't have this issue everywhere.
I'll attach my ubuntu-bug report here, as the machine which generated
it is headless.
Thanks
C
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/2079785/+subscriptions
More information about the foundations-bugs
mailing list