[Bug 834901] [NEW] Apparmor profile blocks geoip db access
Dominic Benson
834901 at bugs.launchpad.net
Fri Aug 26 17:32:24 UTC 2011
Public bug reported:
Using the GeoIP functionality to select a view based on origin country,
the lookup fails, and the following appears in the kernel log:
type=1503 audit(1314378773.754:948): operation="open" pid=21253
parent=1 profile="/usr/sbin/named" requested_mask="::r"
denied_mask="::r" fsuid=111 ouid=0 name="/usr/share/GeoIP/GeoIP.dat"
The apparmor profile installed with bind9 doesn't permit read access to
the GeoIP data files in /usr/share/GeoIP
Observed in Lucid, I can't see a mention of a fix in the changelog to Natty.
bind9 version: 1:9.7.0.dfsg.P1-1ubuntu0.3
** Affects: bind9 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/834901
Title:
Apparmor profile blocks geoip db access
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/834901/+subscriptions
More information about the Ubuntu-server-bugs
mailing list