You are not logged in.

#1 2022-11-19 03:35:09

farmerdave
Member
Registered: 2011-11-23
Posts: 90

apparmor denied samba in audit log

Recently I posted a previous topic regarding apparmor and samba
https://bbs.archlinux.org/viewtopic.php?id=276044

A bug ticket was raised
https://bugs.archlinux.org/task/74614

and both the ticket and forum post were marked solved. However, I still cannot see my public shares.

Using

# grep -i denied /var/log/audit/audit.log

I see the following still:

type=AVC msg=audit(1668827961.356:772): apparmor="DENIED" operation="open" profile="samba-dcerpcd" name="/var/cache/samba/names.tdb" pid=393392 comm="samba-dcerpcd" requested_mask="wrc" denied_mask="wrc" fsuid=0 ouid=0FSUID="root" OUID="root"

If I temporarily disable the profile

apparmor_parser -R /etc/apparmor.d/samba-dcerpcd

along with samba-rpcd-classic and samba-rpcd I can then see my shares.

I can't find anything in the Arch wiki about modifying those files, only
https://wiki.archlinux.org/title/Samba# … n_AppArmor

Is this a sign that the bug is not actually fixed or something new?

Offline

#2 2022-12-04 21:08:13

kleptophobiac
Member
From: Sunnyvale, CA
Registered: 2004-04-25
Posts: 488

Re: apparmor denied samba in audit log

I'm guessing it's new. I'm seeing the same thing after installing apparmor.

Offline

#3 2022-12-04 22:14:07

adventurer
Member
Registered: 2014-05-04
Posts: 107

Re: apparmor denied samba in audit log

Well, you can interactively add the necessary rules by executing

sudo aa-logprof 

Offline

Board footer

Powered by FluxBB