Ubuntu
ntp package

apparmour denies access to /var/log/ntpstats/protostats

Bug #1195898 reported by mohclips on 2013-06-28

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	ntp (Ubuntu)	Fix Released	Undecided	Jamie Strandboge

Bug Description

Jun 28 07:55:29 2013 ubuntu <daemon.err<27>> ntpd[2001]: can't open /var/log/ntpstats/protostats.20130628: Permission denied
Jun 28 07:55:29 2013 ubuntu <kern.notice<5>> kernel: [136683.753956] type=1400 audit(1372402529.550:120): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/sbin/ntpd" name="/var/log/ntpstats/protostats.20130628" pid=2001 comm="ntpd" requested_mask="c" denied_mask="c" fsuid=129 ouid=129

FIX:

vi /etc/apparmor.d/usr.sbin.ntpd

#add

/var/log/ntpstats/protostats* rwl,

# restart

apparmor_parser -r /etc/apparmor.d/usr.sbin.ntpd

DATA:

# lsb_release -rd
Description: Ubuntu 12.04.2 LTS
Release: 12.04

# apt-cache policy ntp
ntp:
  Installed: 1:4.2.6.p3+dfsg-1ubuntu3.1
  Candidate: 1:4.2.6.p3+dfsg-1ubuntu3.1
  Version table:
*** 1:4.2.6.p3+dfsg-1ubuntu3.1 0
        500 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages
        100 /var/lib/dpkg/status
     1:4.2.6.p3+dfsg-1ubuntu3 0
        500 http://gb.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages

# apt-cache policy apparmor
apparmor:
  Installed: 2.7.102-0ubuntu3.8
  Candidate: 2.7.102-0ubuntu3.8
  Version table:
*** 2.7.102-0ubuntu3.8 0
        500 http://gb.archive.ubuntu.com/ubuntu/ precise-proposed/main amd64 Packages
        100 /var/lib/dpkg/status
     2.7.102-0ubuntu3.7 0
        500 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages
        500 http://security.ubuntu.com/ubuntu/ precise-security/main amd64 Packages
     2.7.102-0ubuntu3 0
        500 http://gb.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages

Tags:

Related branches

lp:ubuntu/saucy-proposed/ntp

Jamie Strandboge (jdstrand) on 2013-07-05

Changed in ntp (Ubuntu):
assignee:	nobody → Jamie Strandboge (jdstrand)
status:	New → In Progress
tags:	added: apparmor removed: apparmour

Revision history for this message

Launchpad Janitor (janitor) wrote on 2013-07-05:

This bug was fixed in the package ntp - 1:4.2.6.p5+dfsg-2ubuntu2

---------------
ntp (1:4.2.6.p5+dfsg-2ubuntu2) saucy; urgency=low

* debian/apparmor-profile: Add /var/log/ntpstats/protostats* (LP: #1195898)
-- Jamie Strandboge <email address hidden> Fri, 05 Jul 2013 10:06:47 -0500

Changed in ntp (Ubuntu):
status:	In Progress → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuntp package