Dear adrelanos.
wow, on gateway an workstation (9.3) we got several apparmor Errors PID 1840, PId1645 and much more others. How i can fix this. Does it give a workaround to fix for really secure. So apparmor is thee Health off.
With best Regards!
townsend
This needs more information.
Please copy the exact error messages in here. You can also find them in /var/log/kern.log
Sure you’re not meaning this
?
The Error is an Parser Error on
/usr/lib/dovecot/pop3
Oct 27 23:29:20 host kernel: [ 7.257209] pcnet32 0000:00:03.0: eth0: link up, 100Mbps, full-duplex Oct 27 23:29:20 host kernel: [ 7.628966] type=1400 audit(1414452557.438:2): apparmor="STATUS" operation="profile_load" name="/bin/ping" pid=1618 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 7.657297] type=1400 audit(1414452557.466:3): apparmor="STATUS" operation="profile_load" name="/sbin/klogd" pid=1619 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 7.678263] type=1400 audit(1414452557.486:4): apparmor="STATUS" operation="profile_load" name="/sbin/syslog-ng" pid=1620 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 7.686658] type=1400 audit(1414452557.494:5): apparmor="STATUS" operation="profile_load" name="/sbin/syslogd" pid=1621 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.229822] type=1400 audit(1414452560.038:6): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/deliver" pid=1623 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.277602] type=1400 audit(1414452560.086:7): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/dovecot-auth" pid=1624 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.288226] type=1400 audit(1414452560.098:8): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/imap" pid=1625 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.297323] type=1400 audit(1414452560.106:9): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/imap-login" pid=1626 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.307307] type=1400 audit(1414452560.114:10): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/managesieve-login" pid=1627 comm="apparmor_parser" Oct 27 23:29:20 host kernel: [ 10.313697] type=1400 audit(1414452560.122:11): apparmor="STATUS" operation="profile_load" name="/usr/lib/dovecot/pop3" pid=1628 comm="apparmor_parser"
on Workstation
Best Regards
townsend
Edit by Patrick:
deactivated smileys
That log only shows profile_load info log messages. No errors. Doesn’t mention parser bug.
This needs more info. What you did. How and where you were able to produce that bug. Perhaps a screenshot.
See also:
http://www.chiark.greenend.org.uk/~sgtatham/bugs.html
Image of happens continues on Image Link!
Best Regards!
townsend
Okay, thanks for the report!
Perhaps troubadour can investigate this.
Unless you’re using dovecot, it the issue doesn’t apply to you.
We should still fix it if we caused it because it might have other odd effects. Please have a look every now and then in this thread (or subscribe by e-mail or rss or what you prefer). troubadour might have some follow up questions to investigate this.
Dear Adrelanos.
We have a other AppArmor Error on Gateway. Thank you and troubadour for the workaroud on AppArmor i will follow all Day (Forum Place)! It do not apply to me at present. Great to listen, that this will be fixed, so AppArmor is a big Secure! (Probably more People should know this.) I will subscribe per Mail and will be Online on the Forum every Day, so i am a great Fan of you and Whonix!
With best Regards!
townsend
There is a problem with a profile from Debian.
In Whonix Gateway and Workstation, run:
sudo aa-disable /etc/apparmor.d/usr.bin.chromium-browserReboot. The red “failed!” error should not show anymore.
There might be some messages about “network rules not enforced”. You can safely ignore them.
Thank you troubadour. Works perfectly.
Best Regards!
townsend