AppArmor Profiles

Merge lp:~sdeziel/apparmor-profiles/fixes into lp:apparmor-profiles

fixes
Merge into master

Proposed by Simon Déziel on 2011-11-28

Status:	Merged
Merged at revision:	74
Proposed branch:	lp:~sdeziel/apparmor-profiles/fixes
Merge into:	lp:apparmor-profiles
Diff against target:	58 lines (+5/-3) 5 files modified ubuntu/12.04/usr.lib.dovecot.deliver (+1/-1) ubuntu/12.04/usr.lib.dovecot.dovecot-auth (+1/-0) ubuntu/12.04/usr.lib.dovecot.imap (+1/-1) ubuntu/12.04/usr.lib.dovecot.imap-login (+1/-0) ubuntu/12.04/usr.lib.dovecot.pop3 (+1/-1)
To merge this branch:	bzr merge lp:~sdeziel/apparmor-profiles/fixes
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
Jamie Strandboge		2011-11-28	Approve on 2011-11-29
Review via email: mp+83707@code.launchpad.net

Description of the change

Here are some modifications used on my Lucid Dovecot server. They allow to store maildirs under /var/mail/vmail/<user> with the dovecot-auth process running as the "vmail" user. It also enables IPv6 supports.

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2011-11-29:

ACK. The 'vmail' user is something mentioned in http://wiki.dovecot.org/VirtualUsers and this seems to be a common configuration we would like to support.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

Subscribers

People subscribed via source and target branches

to all changes:

AppArmor Developers

Christian Boltz

James Troup

Simon Déziel

Steve Beattie

johe

to status/vote changes:

BuggyB

1	=== modified file 'ubuntu/12.04/usr.lib.dovecot.deliver'
2	--- ubuntu/12.04/usr.lib.dovecot.deliver 2011-10-13 18:33:26 +0000
3	+++ ubuntu/12.04/usr.lib.dovecot.deliver 2011-11-28 22:43:25 +0000
4	@@ -16,5 +16,5 @@
5	@{HOME}/mail/* klrw,
6	@{HOME}/mail/.imap/** klrw,
7	/usr/lib/dovecot/deliver mr,
8	- /var/mail/* klrw,
9	+ /var/mail/** klrw,
10	}
11
12	=== modified file 'ubuntu/12.04/usr.lib.dovecot.dovecot-auth'
13	--- ubuntu/12.04/usr.lib.dovecot.dovecot-auth 2011-10-13 18:33:26 +0000
14	+++ ubuntu/12.04/usr.lib.dovecot.dovecot-auth 2011-11-28 22:43:25 +0000
15	@@ -7,6 +7,7 @@
16	#include <abstractions/nameservice>
17	#include <abstractions/wutmp>
18
19	+ capability setuid,
20	capability setgid,
21	capability chown,
22	capability dac_override,
23
24	=== modified file 'ubuntu/12.04/usr.lib.dovecot.imap'
25	--- ubuntu/12.04/usr.lib.dovecot.imap 2011-10-13 18:33:26 +0000
26	+++ ubuntu/12.04/usr.lib.dovecot.imap 2011-11-28 22:43:25 +0000
27	@@ -15,5 +15,5 @@
28	@{HOME}/mail/* klrw,
29	@{HOME}/mail/.imap/** klrw,
30	/usr/lib/dovecot/imap mr,
31	- /var/mail/* klrw,
32	+ /var/mail/** klrw,
33	}
34
35	=== modified file 'ubuntu/12.04/usr.lib.dovecot.imap-login'
36	--- ubuntu/12.04/usr.lib.dovecot.imap-login 2011-10-13 18:33:26 +0000
37	+++ ubuntu/12.04/usr.lib.dovecot.imap-login 2011-11-28 22:43:25 +0000
38	@@ -11,6 +11,7 @@
39	capability sys_chroot,
40
41	network inet stream,
42	+ network inet6 stream,
43
44	/usr/lib/dovecot/imap-login mr,
45	/{,var/}run/dovecot/login/ r,
46
47	=== modified file 'ubuntu/12.04/usr.lib.dovecot.pop3'
48	--- ubuntu/12.04/usr.lib.dovecot.pop3 2011-10-13 18:33:26 +0000
49	+++ ubuntu/12.04/usr.lib.dovecot.pop3 2011-11-28 22:43:25 +0000
50	@@ -8,7 +8,7 @@
51	capability setgid,
52	capability setuid,
53
54	- /var/mail/* klrw,
55	+ /var/mail/** klrw,
56	@{HOME} r,
57	@{HOME}/mail/* klrw,
58	@{HOME}/mail/.imap/** klrw,

AppArmor Profiles

Merge lp:~sdeziel/apparmor-profiles/fixes into lp:apparmor-profiles

Commit message

Description of the change

Preview Diff

Subscribers