Ubuntu
cups package

  1. Bug #324645
  2. Comment #5

Comment 5 for bug 324645

Revision history for this message
Martin Pitt (pitti) wrote : Re: Hardy i386 Cupsd crash with SIGSEGV with PAM/Kerberos Auth

> audit(1234518067.729:18152): type=1503 operation="inode_permission"
> requested_mask="w::" denied_mask="w::" name="/etc/krb5.conf" pid=12486
> profile="/usr/sbin/cupsd" namespace="default"

This looks worrysome. Why does it want to write ("w") krb5.conf? ...

> Then I add "/etc/krb5.conf r," to app-armour for usr.sbin.cupsd

Anyway, you only gave it read permissions, which should really be sufficient. Since you say that works, all is great.

'k' means "lock", BTW, i. .e you can call flock() on a file. It's rather harmless.

So I'll add those changes to the cups profile.

Thank you!