Public bug reported:
Apache2 needs updates for proper signal handling, optional saslauth, and
OCSP stapling...
--- apache2-common 2014-06-24 11:06:06.000000000 -0700
+++ /etc/apparmor.d/abstractions/apache2-common 2015-05-21 07:51:49.000000000
-0700
@@ -8,6 +8,8 @@
signal (receive) peer=unconfined,
# Allow apache to send us signals by default
signal (receive) peer=/usr/sbin/apache2,
+ # Allow other hats to signal by default
+ signal peer=/usr/sbin/apache2//*,
# Allow us to signal ourselves
signal peer=@{profile_name},
@@ -25,3 +27,12 @@
/dev/urandom r,
+ # sasl-auth
+ /run/saslauthd/mux rw,
+
+ # OCSP stapling
+ /var/log/apache2/stapling-cache rw,
** Affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor in Ubuntu.
https://bugs.launchpad.net/bugs/1658238
Title:
apache2 abstraction incomplete
Status in apparmor package in Ubuntu:
New
Bug description:
Apache2 needs updates for proper signal handling, optional saslauth,
and OCSP stapling...
--- apache2-common 2014-06-24 11:06:06.000000000 -0700
+++ /etc/apparmor.d/abstractions/apache2-common 2015-05-21 07:51:49.000000000
-0700
@@ -8,6 +8,8 @@
signal (receive) peer=unconfined,
# Allow apache to send us signals by default
signal (receive) peer=/usr/sbin/apache2,
+ # Allow other hats to signal by default
+ signal peer=/usr/sbin/apache2//*,
# Allow us to signal ourselves
signal peer=@{profile_name},
@@ -25,3 +27,12 @@
/dev/urandom r,
+ # sasl-auth
+ /run/saslauthd/mux rw,
+
+ # OCSP stapling
+ /var/log/apache2/stapling-cache rw,
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1658238/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
