[Bug 1557157] [NEW] apparmor profile denied for saslauthd: /run/saslauthd/mux

Mattias Åsander mattiasa at cs.umu.se
Mon Mar 14 20:22:15 UTC 2016


Public bug reported:

When using slapd with saslauthd the processes communicate via the
{,/var}/run/saslauthd/mux socket (this is the default location for the
saslauthd server from the sasl2-bin package in the
/etc/default/saslauthd config), but the apparmor profile for
usr.sbin.slapd does not allow access to this socket/file.

Syslog message:
apparmor="DENIED" operation="connect" profile="/usr/sbin/slapd" name="/run/saslauthd/mux" pid=1880
4 comm="slapd" requested_mask="r" denied_mask="r" fsuid=108 ouid=0


Please add the following line to  /etc/apparmor.d/usr.sbin.slapd:
/{,var/}run/saslauthd/mux rw,


Ubuntu version: Ubuntu 14.04.4 LTS
slapd version: 2.4.31-1+nmu2ubu

** Affects: openldap (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: apparmor saslauthd

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in Ubuntu.
https://bugs.launchpad.net/bugs/1557157

Title:
  apparmor profile denied for saslauthd: /run/saslauthd/mux

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/1557157/+subscriptions



More information about the Ubuntu-server-bugs mailing list