Adding gnome-control-center here to so the desktop ppl have visibility
that VPN configuration through gnome-control-center won't work anymore
with this new apparmor profile.
** Also affects: gnome-control-center (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notifi
So there is a tension here between users and security. There is no
perfect solution. Allowing openvpn full access to all the users files
has security implications, denying access has usability implications.
As unsatisfying as it is we are working towards a long term solution,
but are not there yet
thanks for the workaround. that works.
But how is that expected to work for a normal Desktop user who needs to
add a VPN through the GNOME Control Center network panel? You have to
select there the files through the file manager so very likely the user
downloaded the VPN configuration from somewhe
I had a similar problem after I upgraded from kubuntu 24.10 to 25.04:
all OpenVPN connections failed due to Apparmor denying access to
$HOME/.cert/nm-openvpn
I solved with
sudo bash -c "echo '@{HOME}/.cert/nm-openvpn/* r,' >>
/etc/apparmor.d/local/openvpn"
sudo apparmor_parser -r /etc/apparmor.d
hi Thomas
To allow access to these files, you can add the following rule to
/etc/apparmor.d/local/openvpn:
@{HOME}/Documents/canonical/vpn/canonical_ta.key r,
It can be done by the following command:
sudo bash -c "echo '@{HOME}/Documents/canonical/vpn/canonical_ta.key r,'
>> /etc/apparmor.d/loc
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: apparmor (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2098930
Title:
o
