https://bugzilla.novell.com/show_bug.cgi?id=851131
https://bugzilla.novell.com/show_bug.cgi?id=851131#c15
--- Comment #15 from Christian Boltz
/var/log/messages contains: type=1400 audit(1400761278.341:40): apparmor="DENIED" operation="mknod" parent=2602 profile="/usr/sbin/winbindd" name="/var/tmp/s5143l-044_10000"
My only thought is that I used capital letters in the hostname, and if something in apparmor is expecting to allow /var/tmp/S5143L-044_10000 instead of /var/tmp/s5143l-044_10000 that might upset it.
That's (more or less) intentional, see comment #11: ----- The only exception is "/var/tmp/* rw," which is too broad IMHO, and I don't have a good way to restrict it to /var/tmp/$hostname. Please add this part to /etc/apparmor.d/local/usr.sbin.winbindd yourself if you need it. ----- So please add /var/tmp/* rw, to /etc/apparmor.d/local/usr.sbin.winbindd. @Lars: the remaining section of comment 11 is still valid: ----- Lars, I'm still waiting for an answer to comment #6 ;-) (as an alternative, moving those files to /run/samba/ or something like that would be even better - if you do this, please tell me so that I can provide updated profiles in time.) ------ -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.