[prev in list] [next in list] [prev in thread] [next in thread]
List: apparmor-dev
Subject: Re: [apparmor] [patch] dnsmasq profile: more lxd additions
From: John Johansen <john.johansen () canonical ! com>
Date: 2016-10-21 3:48:19
Message-ID: 339cfd15-e02d-34ea-b7a1-891c00423c34 () canonical ! com
[Download RAW message or body]
On 10/20/2016 10:31 PM, Christian Boltz wrote:
> Hello,
>
> $subject.
>
> Besides dnsmasq.leases, dnsmasq.pid needs to be written. Also read
> access for some files is needed (currently dnsmasq.raw and
> dnsmasq.hosts - using dnsmasq.* makes this more future-proof when
> more files get added)
>
> References: https://bugs.launchpad.net/apparmor/+bug/1634199 (again)
>
Acked-by: John Johansen <john.johansen@canonical.com>
>
> [ profiles-dnsmasq.diff ]
>
> === modified file 'profiles/apparmor.d/usr.sbin.dnsmasq'
> --- profiles/apparmor.d/usr.sbin.dnsmasq 2016-10-18 11:22:53 +0000
> +++ profiles/apparmor.d/usr.sbin.dnsmasq 2016-10-20 20:20:22 +0000
> @@ -77,7 +77,9 @@
> # lxd-bridge pid and lease files
> /{,var/}run/lxd-bridge/dnsmasq.pid rw,
> /var/lib/lxd-bridge/dnsmasq.*.leases rw,
> + /var/lib/lxd/networks/*/dnsmasq.* r,
> /var/lib/lxd/networks/*/dnsmasq.leases rw,
> + /var/lib/lxd/networks/*/dnsmasq.pid rw,
>
> # NetworkManager integration
> /{,var/}run/nm-dns-dnsmasq.conf r,
>
>
>
> Regards,
>
> Christian Boltz
>
>
>
--
AppArmor mailing list
AppArmor@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic