ntpd daemon request capability "dac_override"
Bug #749727 reported by
c
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
AppArmor |
Fix Released
|
Undecided
|
Unassigned | ||
NTP |
New
|
Undecided
|
Unassigned |
Bug Description
Environment: Ubuntu Desktop x64 10.10
The following message is observed in syslog
Apr 3 17:47:22 universe kernel: [ 20.235357] type=1400 audit(130182404
either apparmor security profile is too restrictive or daemon "ntpd" has bug
Changed in apparmor: | |
status: | New → Fix Released |
To post a comment you must log in.
I have a very similar profile and ntp.conf, but don't see the DAC capability requested in my logs; perhaps one of your file permissions is different from mine? Of the files and directories listed in the profile that I thought might have different DAC permissions, here's what mine look like:
-rw-r--r-- 1 root root 1633 2010-08-06 17:36 /etc/ntp.conf ntp/ntp. drift
-rw-r--r-- 1 ntp ntp 7 2011-04-03 15:09 /var/lib/
-rw-r--r-- 1 root root 5 2011-04-03 15:09 /var/run/ntpd.pid
drwxr-xr-x 2 ntp ntp 4096 2010-08-06 17:36 /var/log/ntpstats
What do the permissions look like for your files?