How to allow bind in app armor?

bind 12.04 apparmor

Solution 1:

[ 5909.432759] type=1400 audit(1344103797.021:146): apparmor="DENIED" operation="open" parent=8800 profile="/usr/sbin/named" name="/var/log/query.log" pid=8805 comm="named" requested_mask="ac" denied_mask="ac" fsuid=107 ouid=0

That’s because named isn’t allowed to write to the file /var/log/query.log. To solve this issue, open the local include for the apparmor profile of named (/etc/apparmor.d/local/usr.sbin.named), add this line:

/var/log/query.log rw,

Then run

sudo apparmor_parser -r /etc/apparmor.d/usr.sbin.named

to reload the profile.

Related

How to compile a C program that uses pthread.h?
Unable to connect to internet on hyper v Ubuntu 14.04
How to display random jokes from www.icndb.com in your terminal?
After installing Dart commands like pub, dart2js are not found
How to select text for copy and paste in Chrome by keyboard not using the mouse?
Getting <ctrl> + <backspace> to delete words in gnome-terminal and vim insert mode
What do the fstab mount options 'errors=remount -ro' mean?
ensurepip is disabled in Debian/Ubuntu for the system python
Make Ubuntu 18.04 lighter?
How can I use the arrow sign in my bash prompt?
Beware vs. beware of
Does "Irish goodbye" have two meanings which are almost the opposite of each other?