Comment 0 for bug 1621624

Logging into an Ubuntu 16.04 machine that has a confined sshd and running 'hello-world', I see this denial:

kernel: [180734.692698] audit: type=1400 audit(1473365455.056:98): apparmor="DENIED" operation="file_inherit" profile="/usr/lib/snapd/snap-confine" name="/dev/pts/2" pid=28375 comm="ubuntu-core-lau" requested_mask="wr" denied_mask="wr" fsuid=1000 ouid=1000

What is happening is that the fd is being remediated since it is not coming from an unconfined process. Fix is:

    /dev/pts/[0-9]* rw,