Note that the 'Operation not permitted' error in the original demonstration is desired behaviour- when this does /not/ happen the seccomp filter is not working as intended. It's not clear to me what problem you're see'ing but it /could/ be an affect of the seccomp filter in mpm-itk (governed by the LimitUIDRange setting) if for instance mailman is trying to run Exim which is setuid root.
-- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mailman in Ubuntu. https://bugs.launchpad.net/bugs/1349433 Title: AppArmor breaks seccomp @ Apache mpm-itk To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor/+bug/1349433/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs