Il 30/04/19 10:31, Ulrike Uhlig ha scritto:
Hi!
On 30.04.19 09:31, Piviul wrote:
Il 30/04/19 07:51, Carsten Schoenert ha scritto:
downgrading severity as AppArmor isn't officially supported and
activated for the Thunderbird package.
but I'm not the one that activated apparmor for thunderbird: AFAIK in
debian stretch (debian stable) the apparmor profile is enabled by default!
There are two things:
- installing and activating AppArmor
- activating a profile to confine a given software
The latter is sometimes done by packages but only takes effect if you
did the former.
In Stretch, AppArmor is not activated by default. Did you activate it
and use it for other software?
I can't remember why have installed apparmor.. even if the kernel
recommend it!
[...]
Your folder path was:
name="/home/DOMINIOCSA/psala/.thunderbird/5p9oab1n.default/.parentlock"
The issue is the "psala", that does not look like a standard path to me,
or is there a software which creates such a folder?
is a standard path for remote users. In this case the PC is join to a
samba domain but AFAIK every time you use remote authentication
(winbind, ldap...) the user home have a path like this.
So to me it sounds like a non-issue. You can add a local AppArmor file
for your setup, that would allow the path you're using. So you won't
have to disable the profile altogether. In summary, it does not look
like a bug in the AppArmor profile of Thunderbird at first glance.
In my opinion is an issue because this kind of path are standard for
remote users.
Piviul
