1) Lubuntu 17.10 (development) 2) apparmor-utils: 2.11.0-2ubuntu17 3) I'd like to fix the denies 4) aa-logprof exits with ok status
{ root@user:~# aa-logprof Reading log entries from /var/log/syslog. Updating AppArmor profiles in /etc/apparmor.d. }
{ root@user:~# dmesg |tail [ 5414.555628] audit: type=1400 audit(1508192162.782:159): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5414.555635] audit: type=1400 audit(1508192162.782:160): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5414.660240] audit: type=1400 audit(1508192162.888:161): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5414.660252] audit: type=1400 audit(1508192162.888:162): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5414.660499] audit: type=1400 audit(1508192162.888:163): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5414.660509] audit: type=1400 audit(1508192162.888:164): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5473.363665] audit: type=1400 audit(1508192221.591:165): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5473.363679] audit: type=1400 audit(1508192221.591:166): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5473.364894] audit: type=1400 audit(1508192221.592:167): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19228 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 [ 5473.377444] audit: type=1400 audit(1508192221.605:168): apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 }
I had some problems with rsyslog and I have installed inetutils-syslogd. Maybe this is why.
1) Lubuntu 17.10 (development)
2) apparmor-utils: 2.11.0-2ubuntu17
3) I'd like to fix the denies
4) aa-logprof exits with ok status
{
root@user:~# aa-logprof
Reading log entries from /var/log/syslog.
Updating AppArmor profiles in /etc/apparmor.d.
}
{ 2.782:159) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 2.782:160) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 2.888:161) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 2.888:162) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 2.888:163) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 2.888:164) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=1222 comm="smartd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 1.591:165) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 1.591:166) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 1.592:167) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19228 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 1.605:168) : apparmor="ALLOWED" operation="sendmsg" profile="syslogd" name="/dev/log" pid=19227 comm="cron" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
root@user:~# dmesg |tail
[ 5414.555628] audit: type=1400 audit(150819216
[ 5414.555635] audit: type=1400 audit(150819216
[ 5414.660240] audit: type=1400 audit(150819216
[ 5414.660252] audit: type=1400 audit(150819216
[ 5414.660499] audit: type=1400 audit(150819216
[ 5414.660509] audit: type=1400 audit(150819216
[ 5473.363665] audit: type=1400 audit(150819222
[ 5473.363679] audit: type=1400 audit(150819222
[ 5473.364894] audit: type=1400 audit(150819222
[ 5473.377444] audit: type=1400 audit(150819222
}
I had some problems with rsyslog and I have installed inetutils-syslogd. Maybe this is why.