[Bug 346397] [NEW] apparmor denies freshclam access to /var/run/samba/gencache.tdb

[Ilya]

Public bug reported:

Binary package hint: clamav

My /var/log/syslog gets this message every time when freshclam does an
update:

Mar 21 04:14:53 fs1 kernel: [550646.547458] type=1503
audit(1237634093.495:59): operation="inode_permission"
requested_mask="::r" denied_mask="::r" fsuid=5000
name="/var/run/samba/gencache.tdb" pid=6451 profile="/usr/bin/freshclam"

Why freshclam tries to read samba gencache.tdb in the first place?

My guess it may have to do with Samba setup as PDC which uses winbind and modified nsswitch.conf.
# /etc/nsswitch.conf
passwd:     files ldap [UNAVAIL=return]
group:      files ldap [UNAVAIL=return]
shadow:     files ldap [UNAVAIL=return]
hosts:          files wins mdns4_minimal [NOTFOUND=return] dns mdns4
networks:       files
protocols:      db files
services:       db files
ethers:         db files
rpc:            db files
netgroup:       nis
#/etc/nsswitch.conf (END)
But there is no other package that goes to gencache.tdb directly, at least not from apparmor perspective.

Versions:
Ubuntu 8.10
clamav 0.94.dfsg.2-1ubuntu0.1
clamav-freshclam 0.94.dfsg.2-1ubuntu0.1
apparmor 2.3+1289-0ubuntu4.1
samba 2:3.2.3-1ubuntu3.4
winbind 2:3.2.3-1ubuntu3.4

** Affects: clamav (Ubuntu)
     Importance: Undecided
         Status: New

-- 
apparmor denies freshclam access to /var/run/samba/gencache.tdb
https://bugs.launchpad.net/bugs/346397
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs