Your message dated Wed, 23 May 2018 20:49:41 +0000
with message-id <[email protected]>
and subject line Bug#882731: fixed in unbound 1.7.1-1
has caused the Debian Bug report #882731,
regarding apparmor policy only accepts root.key in /var/lib/unbound
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
882731: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882731
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: unbound
Version: 1.6.7-1
User: [email protected]
Usertags: needed-by-DSA-Team
Control: found -1 1.6.0-3+deb9u1
X-Debbugs-Cc: [email protected]
The apparmor policy for unbound allows access to
/var/lib/unbound/root.key*, but it does not allow access to any
other dynamically updated key the admin might have put there,
such as debian.org.key on DSA infrastructure.
Please allow access to all key files.
--
| .''`. ** Debian **
Peter Palfrader | : :' : The universal
https://www.palfrader.org/ | `. `' Operating System
| `- https://www.debian.org/
--- End Message ---
--- Begin Message ---
Source: unbound
Source-Version: 1.7.1-1
We believe that the bug you reported is fixed in the latest version of
unbound, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Robert Edmonds <[email protected]> (supplier of updated unbound package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 23 May 2018 15:41:54 -0400
Source: unbound
Binary: libunbound-dev libunbound2 python-unbound python3-unbound unbound
unbound-anchor unbound-host
Architecture: source
Version: 1.7.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian DNS Packaging <[email protected]>
Changed-By: Robert Edmonds <[email protected]>
Description:
libunbound-dev - static library, header files, and docs for libunbound
libunbound2 - library implementing DNS resolution and validation
python-unbound - library implementing DNS resolution and validation (Python
bindin
python3-unbound - library implementing DNS resolution and validation (Python3
bindi
unbound - validating, recursive, caching DNS resolver
unbound-anchor - utility to securely fetch the root DNS trust anchor
unbound-host - reimplementation of the 'host' command
Closes: 867186 882731 891705
Changes:
unbound (1.7.1-1) unstable; urgency=medium
.
[ Robert Edmonds ]
* debian/control: Update Vcs-* links to use salsa.debian.org URLs
* New upstream version 1.7.1
.
[ Simon Deziel ]
* debian/apparmor-profile: Add capabilities to chown/chmod Unix control
socket (Closes: #891705)
* debian/apparmor-profile: Allow reading /var/lib/sss/mc/initgroups
* debian/apparmor-profile: Permit unbound to notify readiness to systemd
(Closes: #867186)
* debian/apparmor-profile: Let unbound r/w anywhere under
/var/lib/unbound (Closes: #882731)
* debian/apparmor-profile: Use attach_disconnected
Checksums-Sha1:
f54e46ca1e94cfd3437a15e546a8fa49fa7759b8 3039 unbound_1.7.1-1.dsc
b853b746fa1f89ecce160850ab163ef78f67eea5 5565938 unbound_1.7.1.orig.tar.gz
3bb6017bcc5f1daa31261761435c37ea26c34820 17708 unbound_1.7.1-1.debian.tar.xz
fd29c21acd7ac69f4e379c727ed9ed819649281b 8379 unbound_1.7.1-1_source.buildinfo
Checksums-Sha256:
909c3a4269ad19e029af37fc555830cddfcfdc76e967cb34eb650316aeca061c 3039
unbound_1.7.1-1.dsc
56e085ef582c5372a20207de179d0edb4e541e59f87be7d4ee1d00d12008628d 5565938
unbound_1.7.1.orig.tar.gz
e04fb28e498e2c63d23e0c27644313be426d7afb2cd96233e400189f26bfff1f 17708
unbound_1.7.1-1.debian.tar.xz
00ad37e4af4a6e5c0f67eeb66a1e4e471fa8787d3f7bbaf97bccb8660b52152e 8379
unbound_1.7.1-1_source.buildinfo
Files:
dfdef65c1a758231bb94c04dc11a44eb 3039 net optional unbound_1.7.1-1.dsc
e3614d9746e1fd45f191a2b88ad8df04 5565938 net optional unbound_1.7.1.orig.tar.gz
7a65002f20a2ca951997300199eb5d09 17708 net optional
unbound_1.7.1-1.debian.tar.xz
01e87f164e340025d530fe6092effe7b 8379 net optional
unbound_1.7.1-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEE3z2W7rOCeCDzAmZcAYF6sKr2za4FAlsFzxgACgkQAYF6sKr2
za6zWg/8C1M8fRLlji0O8eDRIoC654YTl2jN+TOO/7JnAptqE2XPEwpCT4DG3R+Z
5U+NjJ9w0OH12c5foFM3QQBPvuGkE6+XAcxr8j3pISiw2ih7Pgh8KltIfScS5yEO
BvzaVvp6dxC0K+sV/GRJftHy3rtUjykHbcv3CfxKAVxb94qsxqKNDNEg12X+kPdz
zM/iTg03QYpooyfBhfAAXGBU3oWocQanUPA5e7K4I608G17AJVFqQsU4tzoacE74
5jnkdu4AQIhTJIXRE+LMq4dPDs4p9b5Wh1xa9+dYqFKBTLrxvCE1yytWbAM7PSsV
0f1+5twXiAx51vOr9FDNIuVJccDXEfblST7D41sIvWQbvbCzwMzOpP1RwnYK5+gf
DaJLd7G/OKyfgPWcLVbQVsvruebt/FvoKcQKm0TUE94OBxSMFoJl44vJbnUk3YbF
+bdfQsjF8xIbgCn+3NfZpGF3M0m/zvvD8sJm82aDk8FfyRfiG3uPU8t5PJkNbjIt
+qcqS8TpDVVugGDwOskUWa13srvrdVxBnydbReWQoGP/9R2mFpluJGxqLsNSKxYr
3oswzQP70mMc8DbJhEwSKFFcyj20uBUZOqNG8iQPJuswstDCLqqqQ8NH6bdcBI/n
MZKgFxY0j2J0eTHeplzQSBRcuqyAz0f+nQBuzjqc4WNleb9GQTY=
=h0QP
-----END PGP SIGNATURE-----
--- End Message ---
