So the issue here is that, due to logprof not taking into account some
logging changes, it was dropping 'exec' events that occurred when the
profile in question was in enforcing mode; it would catch it if it was
in complain mode (because of the generated null profile on exec in
complain mode). I've
** Changed in: apparmor (Ubuntu Precise)
Status: Incomplete => New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as well as complaints
To manag
1. Create /tmp/foo.sh:
#!/bin/sh
cat /etc/fstab
grep root /etc/passwd
2. chmod 755 /tmp/foo.sh
3. sudo aa-genprof /tmp/foo.sh
Writing updated profile for /tmp/foo.sh.
Setting /tmp/foo.sh to complain mode.
...
[(S)can system log for AppArmor events] / (F)inish
(press 'f' (ie, don't run /tmp/foo.s
** Changed in: apparmor (Ubuntu Precise)
Status: Triaged => In Progress
** Changed in: apparmor (Ubuntu Precise)
Status: In Progress => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.ne
Jamie, can you describe how you hit this, as I'm unable to reproduce it.
In the example below auditd is not running:
$ cat tmp/my.sh
#!/bin/sh
cat "$@" > /dev/null
$ cat /etc/apparmor.d/home.ubuntu.tmp.my.sh
# Last Modified: Mon Mar 26 10:59:48 2012
#include
/home/ubuntu/tmp/my.sh {
#include
** Changed in: apparmor (Ubuntu Precise)
Milestone: ubuntu-12.04-beta-2 => ubuntu-12.04
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as well as co
** Changed in: apparmor (Ubuntu Precise)
Milestone: ubuntu-12.04-beta-1 => ubuntu-12.04-beta-2
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as wel
** Tags added: rls-mgr-p-tracking
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as well as complaints
To manage notifications about this bug go to:
ht
** Changed in: apparmor (Ubuntu Precise)
Milestone: precise-alpha-2 => ubuntu-12.04-beta-1
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as well as
** Changed in: apparmor (Ubuntu Precise)
Assignee: Ubuntu Security Team (ubuntu-security) => Steve Beattie
(sbeattie)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof sho
** Changed in: apparmor (Ubuntu)
Assignee: (unassigned) => Ubuntu Security Team (ubuntu-security)
** Also affects: apparmor (Ubuntu Precise)
Importance: High
Assignee: Ubuntu Security Team (ubuntu-security)
Status: Triaged
** Changed in: apparmor (Ubuntu Precise)
Milestone
** Changed in: apparmor (Ubuntu)
Importance: Wishlist => High
** Tags added: rls-mgr-p-tracking
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as we
This is a regression. aa-logprof has in the past worked fine with
denials
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/872446
Title:
aa-logprof should detect denials as well as complaints
To mana
13 matches
Mail list logo
