Thanks for taking the time to report this bug, Sebastian.
I'm adding it to the Ubuntu Server queue; as you mentioned, this is a
relatively old issue and IIUC there's been some pushback to implement
this. As Christian mentioned in the Debian bug, enabling write access
via the apparmor profile by default could be interpreted as a security
risk, so we have to take a deeper look into this problem before we
proceed.
FWIW, I haven't tried to reproduce this bug locally, but I am setting
its status as Triaged because it's pretty clear that the apparmor
profile still doesn't allow strongswan to write to /etc/resolv.conf.
** Changed in: strongswan (Ubuntu)
Status: New => Triaged
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1970455
Title:
AppArmor profile prevents DNS Servers from being added to resolv.conf
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1970455/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
