I had tried setting up an apparmor profile for apache but now its just causing all kinds of grief. My logs are filling up with stuff like:
type=1502 audit(1312435921.994:54686): operation="file_perm" pid=2305 parent=1797 profile="/usr/lib/apache2/mpm-prefork/apache2//null-c3a" requested_mask="::w" denied_mask="::w" fsuid=33 ouid=0 name="/var/log/apache2/error
I tried aa-complain /usr/sbin/apache2 yet when i save that or scan the log it makes it /usr/lib/apache2/mpm-prefork/apache2 and saves a profile like that.
I just wanted a generic apache2 profile to maybe for everything inside docroot but with this mpm-prefork its always forcing changehat stuff or errors about the apache hats etc.
So is there a way to get rid of this new profile and just have a generic apache2 one without the hats etc? or even just make it so apparmor stops complaining about apache altogether....
Bookmarks