I'd even recommend to restrict it a bit more:
owner /tmp/antispam-mail*/ rw,
owner /tmp/antispam-mail*/* rwkl,
sendmail might be a candidate for a child profile. Such a (maybe too
generous) profile already exists in the dovecot-lda profile, so cleaning
it up and removing permissions that are
Would be profiles/apparmor.d/usr.lib.dovecot.imap in the apparmor package.
But after all the time we might need a check if things still apply.
Also might in a different setup the same entries might be needed in
usr.lib.dovecot.pop3 or such.
And in that case maybe rather
While working on the minor merge for Dovecot I realized that this profile is in
fact part of apparmor profiles :-/
So I flagged wrong last November - adding apparmor now.
** Also affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
** No longer affects: dovecot (Ubuntu)
--
Long dormant, I just came by accidentally and realized it was missed on the
last merge since it is a change in dovecot that is needed.
Adding the right bug task to hopefully be picked up next time.
** Also affects: dovecot (Ubuntu)
Importance: Undecided
Status: New
--
You received
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: dovecot-antispam (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/482080
This is also affecting Lucid.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/482080
Title:
Dovecot's apparmor profile breaks dovecot-antispam
To manage notifications about this bug go to:
As a temporary workaround, I've added this to
/etc/apparmor.d/usr.lib.dovecot.imap
# dovecot-antispam plugin
owner /tmp/** rwkl,
owner /tmp/antispam-mail-*/* klrw,
# dovecot-antispam pipes to sendmail
/usr/sbin/sendmail PUx,
--
You received this bug notification because you
In fact the following is enough :
# dovecot-antispam plugin
owner /tmp/** rwkl,
# dovecot-antispam pipes to sendmail
/usr/sbin/sendmail PUx,
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
