Bug#975333: msmtp: AppArmor profile breaks --file, logfile, and passwordeval

Fri, 20 Nov 2020 11:27:51 -0800 

Package: msmtp
Version: 1.8.11-2
Severity: normal

Dear Maintainer,

There are several problems in the Debian AppArmor profile that are frequently
reported to me as the upstream maintainer, but I cannot fix them since
I do not ship the AppArmor profile.

1. Option --file
   AppArmor restricts which configuration files msmtp may read. This
   breaks option --file because the user cannot chose freely anymore.

2. Option --logfile and configuration command logfile
   The AppArmor profile does not allow msmtp to write log information
   to arbitrary files, which breaks the corresponding configuration
   options and command.

3. Option --passwordeval and command passwordeval
   The AppArmor profile restricts the commands that msmtp may execute.
   This breaks the passwordeval configuration option and command.
   This restriction is documented in News.Debian, but in my opinion this
   does not make things better.

A big problem is that users do not know where to look if they get an
unexplainable "permission denied" error. Almost nobody knows that
AppArmor interferes.

A working AppArmor profile would have to allow reading, writing and
executing arbitrary files, which would make it pretty much useless.

I therefore propose to either remove the AppArmor profile or restrict it
to the msmtp-mta package, so that most users can continue using msmtp as
expected.

Best,
Martin


*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
     ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.9.0-2-amd64 (SMP w/32 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages msmtp depends on:
ii  adduser                3.118
ii  debconf [debconf-2.0]  1.5.74
ii  libc6                  2.31-4
ii  libgnutls30            3.6.15-4
ii  libgsasl7              1.8.1-4
ii  libsecret-1-0          0.20.3-1
ii  ucf                    3.0043

Versions of packages msmtp recommends:
ii  ca-certificates  20200601

Versions of packages msmtp suggests:
pn  msmtp-mta  <none>

-- debconf information excluded

Reply via email to