Hi Colin,
I'm a little confused, while confining pulseaudio is a good idea,
pulseaudio should no longer be setuid, and hasn't been by default in
Ubuntu since at least before 10.04 LTS. The reason it was setuid in the
past was to give itself realtime priority (which requires CAP_SYS_NICE,
see capabilities(7)); however, with the addition of (the poorly
abbreviated) realtime kit service, pulseaudio no longer needs to be
setuid at all. Do you have any idea how you got a setuid pulseaudio
installed?
Secondly, the x86_64 specific paths for shared libraries would be
ameliorated if, for example, the base abstraction were included (e.g.
#include <abstractions/base>).
Thanks.
** Changed in: apparmor (Ubuntu)
Status: New => Incomplete
** Changed in: apparmor (Ubuntu)
Importance: Undecided => Wishlist
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1094789
Title:
Pulseaudio Profile
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1094789/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
