[Bug 693002] [NEW] apparmor rights bug with bind9 and resovconf
Launchpad Bug Tracker
693002 at bugs.launchpad.net
Tue Dec 21 14:33:29 GMT 2010
You have been subscribed to a public bug:
Binary package hint: apparmor
Hi,
The profile defined for named by aparmor is not correct
(apparmor2.5.1~rc1-0ubuntu2 - ubuntu 10.10)
in /etc/apparmor.d/usr.sbin.named we find :
# support for resolvconf
/var/run/named/named.options r,
but resolvconf generates this file as "/var/run/bind/named.options" and
not "/var/run/named/named.options"
Other ACLs also refer to the directory "/var/run/named/" wich does not
even exist in ubuntu 10.10 (the correct path is /var/run/bind/"
this is the same problem for "/var/log/named/" direcorty, because of
naming conventions in ubuntu : you'de rather log into "/var/log/bind/"
instead
A possible solution :
substitute "/var/run/named/" to "/var/run/bind/" and "/var/log/named/" to "/var/log/bind/" in /etc/apparmor.d/usr.sbin.named
Another solution is tu use those "named" directories for
logging/generating file with resolvconf
Cheers
** Affects: bind9 (Ubuntu)
Importance: Undecided
Status: New
--
apparmor rights bug with bind9 and resovconf
https://bugs.launchpad.net/bugs/693002
You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list