[Apparmor-dev] [rfr] new profile abstractions
Mathias Gug
mathiaz at ubuntu.com
Wed Aug 29 13:34:53 MDT 2007
Hi Seth,
On Tue, Aug 28, 2007 at 05:04:00PM -0700, Seth Arnold wrote:
> > +
> > + /etc/samba/smb.conf r,
> > + /usr/share/samba/*.dat mr,
> > + /var/lib/samba/**.tdb mrw,
> > + /var/log/samba/cores/* w,
> > + /var/log/samba/log.* w,
> > + /var/run/samba/*.tdb mrw,
>
> Why does samba require 'mrw' access to these? o_O
The *.tdb files are databases files used by samba processes to store
different type of information (like group_mapping or account_policy).
>
> Is this shared for smbd/nmbd? Which other profiles would use this?
>
Yes. I don't know of other profiles that would use it.
--
Mathias
More information about the Apparmor-dev
mailing list