Public bug reported:
Hi, I'm using dovecot on a computer that I use as half server, half
media center, and I get a lot of popup messages of AppArmor complaining
about dovecot processes doing stuff.
Looking at the kern.log as stated in the messages, I can see stuff like
these:
Jun 20 01:49:24 omicron kernel: [ 962.491873] audit: type=1400
audit(1466380164.941:90): apparmor="ALLOWED" operation="sendmsg"
info="Failed name lookup - disconnected path" error=-13
profile="/usr/lib/dovecot/log" name="run/systemd/journal/dev-log"
pid=2175 comm="log" requested_mask="w" denied_mask="w" fsuid=0 ouid=0
Or:
Jun 20 01:41:24 omicron kernel: [ 482.417903] audit: type=1400
audit(1466379684.909:72): apparmor="ALLOWED" operation="open"
profile="/usr/lib/dovecot/auth" name="/run/dovecot/stats-user" pid=5203
comm="auth" requested_mask="w" denied_mask="w" fsuid=0 ouid=0
This is extremely annoying. I'm not an expert writing rules for
apparmor, but I have the feeling I shouldn't need to, at least from a
very shallow look it seems like those operations are legal and needed
for dovecot to operate, so why aren't included in the shipped aparmor
profiles?
Thanks!
** Affects: dovecot (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1594202
Title:
apparmor messages everywhere
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dovecot/+bug/1594202/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
