I noticed the following error early in the logs:
May 13 09:50:29 server kernel: [47923.441413] type=1400
audit(1431474629.549:812): apparmor="DENIED" operation="mknod"
profile="/usr/sbin/cupsd" name="/data/var/log/cups/error_log" pid=7814
comm="cupsd" requested_mask="c" denied_mask="c" fsuid=0 ouid=0
This looks a lot like you have a symlink from /var to /data/var -- is
this correct? what other symlinks do you have on your system?
You can rewrite apparmor policy in a single place to handle these kinds
of symlinks using the 'alias' directive; put lines like:
alias /var/ -> /data/var/
into your /etc/apparmor.d/tunables/alias file and then reload policies
with apparmor_parser --replace /etc/apparmor.d/
Then restart cups and see if it is allowed to access its logs again.
Thanks
** Changed in: cups (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1454463
Title:
CUPS not allowed to mknod to /var/log by apparmor
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cups/+bug/1454463/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
