Package: ejabberd
Version: 16.09-4
Severity: important
Dear Maintainer,
Default apparmour profile prohibits restoring backups.
-- System Information:
Debian Release: 9.8
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8),
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages ejabberd depends on:
ii adduser 3.115
ii debconf [debconf-2.0] 1.5.61
ii erlang-asn1 1:19.2.1+dfsg-2+deb9u2
ii erlang-base [erlang-abi-17.0] 1:19.2.1+dfsg-2+deb9u2
ii erlang-crypto 1:19.2.1+dfsg-2+deb9u2
ii erlang-inets 1:19.2.1+dfsg-2+deb9u2
ii erlang-jiffy 0.14.8+dfsg-1
ii erlang-lager 3.2.4-1
ii erlang-mnesia 1:19.2.1+dfsg-2+deb9u2
ii erlang-odbc 1:19.2.1+dfsg-2+deb9u2
ii erlang-p1-cache-tab 1.0.4-2
ii erlang-p1-iconv 1.0.2-2
ii erlang-p1-stringprep 1.0.6-2
ii erlang-p1-tls 1.0.7-2+deb9u1
ii erlang-p1-utils 1.0.5-3
ii erlang-p1-xml 1.1.15-2
ii erlang-p1-yaml 1.0.6-2
ii erlang-p1-zlib 1.0.1-4
ii erlang-public-key 1:19.2.1+dfsg-2+deb9u2
ii erlang-ssl 1:19.2.1+dfsg-2+deb9u2
ii erlang-syntax-tools 1:19.2.1+dfsg-2+deb9u2
ii erlang-xmerl 1:19.2.1+dfsg-2+deb9u2
ii init-system-helpers 1.48
ii lsb-base 9.20161125
ii openssl 1.1.0j-1~deb9u1
ii ucf 3.0036
ejabberd recommends no packages.
Versions of packages ejabberd suggests:
ii apparmor 2.11.0-3+deb9u2
pn apparmor-utils <none>
pn ejabberd-contrib <none>
pn erlang-luerl <none>
pn erlang-p1-mysql <none>
pn erlang-p1-oauth2 <none>
pn erlang-p1-pam <none>
pn erlang-p1-pgsql <none>
pn erlang-p1-sip <none>
pn erlang-p1-sqlite3 <none>
pn erlang-p1-stun <none>
pn erlang-redis-client <none>
ii imagemagick 8:6.9.7.4+dfsg-11+deb9u6
ii imagemagick-6.q16 [imagemagick] 8:6.9.7.4+dfsg-11+deb9u6
pn libunix-syslog-perl <none>
pn yamllint <none>
-- Configuration Files:
/etc/apparmor.d/usr.sbin.ejabberdctl changed:
/usr/sbin/ejabberdctl {
#include <abstractions/base>
#include <abstractions/consoles>
#include <abstractions/nameservice>
capability net_bind_service,
capability dac_override,
/bin/bash rmix,
/bin/dash rmix,
/bin/date ix,
/bin/grep ix,
/bin/ps ix,
/bin/sed ix,
/bin/sleep ix,
/bin/su px ->
/usr/sbin/ejabberdctl//su,
profile su {
#include <abstractions/authentication>
#include <abstractions/base>
#include <abstractions/nameservice>
#include <abstractions/wutmp>
capability audit_write,
capability setgid,
capability setuid,
capability sys_resource,
@{PROC}/@{pid}/loginuid r,
@{PROC}/1/limits r,
/bin/bash px ->
/usr/sbin/ejabberdctl,
/bin/dash px ->
/usr/sbin/ejabberdctl,
/bin/su rm,
/etc/environment r,
/etc/default/locale r,
/etc/security/limits.d** r,
/lib/@{multiarch}/libpam.so* rm,
}
/etc/default/ejabberd r,
/etc/ejabberd** r,
/etc/ImageMagick** r,
/run/ejabberd** rw,
/sys/devices/system/cpu** r,
/sys/devices/system/node** r,
/proc/sys/kernel/random/uuid r,
/usr/bin/cut ix,
/usr/bin/erl ix,
/usr/bin/expr ix,
/usr/bin/flock ix,
/usr/bin/getent ix,
/usr/bin/id ix,
/usr/bin/seq ix,
/usr/bin/uuidgen ix,
/usr/lib/erlang/bin/erl ix,
/usr/lib/erlang/erts-*/bin/beam* ix,
/usr/lib/erlang/erts-*/bin/child_setup ix,
/usr/lib/erlang/erts-*/bin/epmd ix,
/usr/lib/erlang/erts-*/bin/erl_child_setup ix,
/usr/lib/erlang/erts-*/bin/erlexec ix,
/usr/lib/erlang/erts-*/bin/inet_gethost ix,
/usr/lib/erlang/lib/**.so rm,
/usr/lib/erlang/p1_pam/bin/epam px ->
/usr/sbin/ejabberdctl//su,
/usr/lib/x86_64-linux-gnu/ImageMagick-*/** ix,
/usr/sbin/ejabberdctl r,
/usr/share/ImageMagick-*/** rix,
/var/backups/ rw,
/var/backups/ejabberd** rwlk,
/var/lib/ejabberd** rw,
/var/log/ejabberd/* rwlk,
/var/run/ejabberd** rw,
# Site-specific additions and overrides. See local/README for details.
#include <local/usr.sbin.ejabberdctl>
}
/etc/default/ejabberd changed:
ERLANG_NODE=ejabb...@jabber.kot-begemot.co.uk
EJABBERD_PID_PATH=/run/ejabberd/ejabberd.pid
EJABBERD_CONFIG_PATH=/etc/ejabberd/ejabberd.yml
CONTRIB_MODULES_CONF_DIR=/etc/ejabberd/modules.d
/etc/ejabberd/inetrc [Errno 13] Permission denied: '/etc/ejabberd/inetrc'
/etc/ejabberd/modules.d/README.modules [Errno 13] Permission denied:
'/etc/ejabberd/modules.d/README.modules'
-- debconf information excluded
