[Pkg-giraffe-maintainers] Bug#934460: AppArmor configuration doesn't cover mime.types, pdftotext and proc --- +iconv
Martin Wolf
mwolf at adiumentum.com
Sun Aug 11 12:37:19 BST 2019
I was thinking about
"/usr/bin/pdftotext ix,"
maybe we need "ux" instead? because the location of the attachments is
not in the apparmor profile.
Also there is another programm who needs to be executed from kopano-search:
"/usr/bin/iconv ux,"
Aug 11 12:23:27 kernel: [26100.280300] audit: type=1400 audit(1565519007.806:257): apparmor="DENIED" operation="exec" profile="/usr/sbin/kopano-search" name="/usr/bin/iconv" pid=12423 comm="sh" requested_mask="x" denied_mask="x" fsuid=110 ouid=0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-giraffe-maintainers/attachments/20190811/6a702fc0/attachment.html>
More information about the Pkg-giraffe-maintainers
mailing list