On Fri, Apr 06, 2012 at 03:21:39PM +0200, Christian Boltz wrote: > Hello, > > If tftp server for dnsmasq is configured it won't serve the boot file. > This patch adds read permissions for /srv/tftpboot/ > > References: https://bugzilla.novell.com/show_bug.cgi?id=738905 > > I propose this patch for trunk and the 2.7 branch.
NACK, that's what the @{TFTP_DIR} variable definition at the top of
the profile is for.
(We can argue about what the default setting for that variable ought
to be...)
> === modified file 'profiles/apparmor.d/usr.sbin.dnsmasq'
> --- profiles/apparmor.d/usr.sbin.dnsmasq
> +++ profiles/apparmor.d/usr.sbin.dnsmasq
> @@ -54,6 +54,9 @@
> # NetworkManager integration
> /{,var/}run/nm-dns-dnsmasq.conf r,
>
> + /srv/tftpboot/ r,
> + /srv/tftpboot/** r,
> +
> # Site-specific additions and overrides. See local/README for
> details.
> #include <local/usr.sbin.dnsmasq>
> }
--
Steve Beattie
<[email protected]>
http://NxNW.org/~steve/
signature.asc
Description: Digital signature
-- AppArmor mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
