That's a great start; I'm concerned about blocking the dgram protocols
though -- will nslcd ever need to look up ldap server addresses via dns?
Your site may not, but maybe someone else's will?
Thanks
** Also affects: apparmor
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor in Ubuntu.
https://bugs.launchpad.net/bugs/1575455
Title:
New AppArmor profile: usr.sbin.nslcd
Status in AppArmor:
New
Status in apparmor package in Ubuntu:
New
Bug description:
nslcd is a good program to be covered by an AppArmor profile, as it
communicates with an LDAP server and services queries from arbitrary
local applications.
This new profile used the existing usr.sbin.nscd profile as a starting
point.
To manage notifications about this bug go to:
https://bugs.launchpad.net/apparmor/+bug/1575455/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
