[ubuntu-studio-users] apparmor and application use of NFS mounted shares
Mike Squires
michael.leslie.squires at gmail.com
Thu Aug 15 13:58:14 UTC 2019
I have my active files stored on a home server (FreeBSD) exported via
NFS 4 and mounted by /etc/fstab:
opteron16:/large/home/mikes /media/opteron16/mikes nfs
auto,nofail,noatime,nolock,intr,tcp,actimeo=1800 0 0
Apparmor blocks opening a file with Audacity but allows LibreOffice to
open a file:
Aug 15 09:49:59 ubuntu kernel: [765471.442846] audit: type=1400
audit(1565876999.520:849): apparmor="DENIED" operation="sendmsg"
profile="/snap/core/7396/usr/lib/snapd/snap-confine" pid=3272
comm="snap-confine" laddr=10.1.5.80 lport=692 faddr=10.1.5.161
fport=2049 family="inet" sock_type="stream" protocol=6
requested_mask="send" denied_mask="send"
Aug 15 09:54:53 ubuntu kernel: [765765.595738] audit: type=1400
audit(1565877293.683:850): apparmor="ALLOWED" operation="open"
profile="libreoffice-soffice"
name="/home/mikes/.cache/mesa_shader_cache/index" pid=3361
comm="soffice.bin" requested_mask="wrc" denied_mask="wrc" fsuid=7961
ouid=7961
Apparmor appear to ignore directory permissions.
How do I change this behavior? I'm trying to manage a 1.3 TB personally
recorded music archive kept on the NFS mounted server.
Mike Squires
--
Michael L. Squires, Ph.D., M.P.A.
546 North Park Ridge Road
Bloomington, IN 47408
Home phone: 812-333-6564
Cell phone: 812-369-5232
www.siralan.org or www.smithgreensound.com
UN*X at home since 1985
More information about the ubuntu-studio-users
mailing list