[Samba] BIND 9.9 apparmor rules with Samba
Fred Smith
fs582087 at gmail.com
Thu Sep 3 02:04:31 UTC 2015
Hi
Current wiki suggestion
(https://wiki.samba.org/index.php/Configure_BIND_as_backend_for_Samba_AD#Interaction_with_AppArmor_or_SELinux)
is to add the following to /etc/apparmor.d/local/usr.sbin.named
# Samba4 DLZ and Active Directory Zones (default source installation)
/usr/local/samba/lib/** rm,
/usr/local/samba/private/dns.keytab r,
/usr/local/samba/private/named.conf r,
/usr/local/samba/private/dns/** rwk,
# Ubuntu
/var/tmp/** rwmk,
I found I needed to add an extra line for bind to start.
/usr/local/samba/etc/smb.conf r,
Regards
Fred.
More information about the samba
mailing list