Thanks for your detailed response!
Originally Posted by
bodhi.zazen
1. Stop firefox.
2. Reload apparmor
Code:
sudo service apparmor stop
sudo service apparmor start
Done.
So you have to look up in your logs to the last denial that does not contain a "null". Fix that denial, and the nulls will go away.
...
If firefox works, close firefox, and debug any denials you received in the "tail -F /var/log/messages" terminal.
In complain mode I didn't get any log entry without the "null".
Then put the firefox profile into enforcing mode and try to start firefox.
Post any denial you do not understand, but do not post any denial with a null profile in it.
After switching to enforce mode I got the following log (now without the "null"):
Code:
May 29 12:25:16 HANNIBAL kernel: [ 1587.419979] __ratelimit: 171 callbacks suppressed
May 29 12:25:16 HANNIBAL kernel: [ 1587.419981] type=1505 audit(1275128716.952:375): operation="profile_replace" pid=4012 name="/usr/lib/firefox-3.6.5pre/firefox-*bin"
May 29 12:25:16 HANNIBAL kernel: [ 1587.420171] type=1505 audit(1275128716.956:376): operation="profile_replace" pid=4012 name="/usr/lib/firefox-3.6.5pre/firefox-*bin//firefox_java"
May 29 12:25:16 HANNIBAL kernel: [ 1587.420302] type=1505 audit(1275128716.956:377): operation="profile_replace" pid=4012 name="/usr/lib/firefox-3.6.5pre/firefox-*bin//firefox_openjdk"
May 29 12:25:48 HANNIBAL kernel: [ 1619.060824] type=1503 audit(1275128748.596:378): operation="exec" pid=4037 parent=4036 profile="/usr/lib/firefox-3.6.5pre/firefox-*bin" requested_mask="x::" denied_mask="x::" fsuid=1000 ouid=1000 name="/home/tlu/tmp/flashgot.ho87hudj.Default_20User/flashgot.fgt"
Bookmarks