Thank you! Speaking about what you wrote: >However, if a user manually modified the installed profiles, then the package >upgrade would cause conflicts, and rejection of the incoming changes (either >by hand during an interactive upgrade or automatically during an batch >unattended upgrade) would result in end users not getting the packaged fix.
Users should be modifying /etc/apparmor.d/local/tnftp to apply any local fixes, then it wouldn't interfere with the package updates right? And speaking of that, /etc/apparmor.d/local/README says: ># Keep in mind that 'deny' rules are evaluated after allow rules, so you won't ># be able to allow access to files that are explicitly denied by the shipped ># profile using this mechanism. Which is no longer accurate with the `priority` keyword being available -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2127491 Title: AppArmor policy prevents reading from $HOME/.netrc To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor-profiles/+bug/2127491/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
