Ubuntu
apparmor package

Additional lines for usr.sbin.smbd profile.

Bug #237066 reported by Adam Sommer on 2008-06-03

Affects		Status	Importance	Assigned to	Milestone
	apparmor (Ubuntu)	Fix Released	Undecided	Unassigned

Bug Description

Binary package hint: apparmor

When testing the usr.sbin.smbd profile which is part of the apparmor-profiles package I noticed that adding the following fixed log entries caused by smbd:

/var/spool/samba/** rw,
/var/run/utmp rwk,

There may be better permissions than the ones I used, but they worked fine for me. /var/spool/samba is needed for sharing printers, and from what I can tell about /var/run/utmp contains information about who is logged in etc. Found this site giving a decent explanation:

http://www.faqs.org/docs/linux_scratch/chapter06/configure.html

Thanks,
Adam

Related branches

lp:ubuntu/karmic/apparmor

Revision history for this message

Launchpad Janitor (janitor) wrote on 2008-06-09:

This bug was fixed in the package apparmor - 2.1+1075-0ubuntu10

---------------
apparmor (2.1+1075-0ubuntu10) intrepid; urgency=low

  [ Jamie Strandboge ]
   * added abstractions/smbpass and #include it in abstractions/authentication
     to allow access to /var/lib/samba/*.tdb. LP: #217787

  [ Mathias Gug ]
   * update likewise-open authentication abstraction: allow access to
     privileged pipe (LP: #235646).
   * Update smbd profile to include access to /var/spool/samba/ (printer
     sharing) and utmp update (LP: #237066).
   * Update esound location in audio profile (LP: #229127).
     Thanks to Adam Mondl.
   * Add dnsmasq profile (LP: #148590). Thanks to John Dong.

-- Mathias Gug <email address hidden> Mon, 09 Jun 2008 18:24:09 -0400

Changed in apparmor:
status:	New → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuapparmor package