[Camps-users] Installing camps within Ubuntu
Jon Jensen
jon at endpoint.com
Wed Mar 24 22:31:35 UTC 2010
On Mon, 22 Mar 2010, Justin Otten wrote:
> When MySQL is installed from apt, it also installed an Apparmor profile,
> restricting mysqld from writing to anywhere except the default MySQL
> installation locations.
Very interesting. Thanks for writing to the list to explain what you found
and how you fixed it, Justin!
> Camps, of course, want to install data into a non-standard location.
> IMO, the typical location is somewhere under a users home directory. So
> a basic fix to this situation is to add the following:
>
> @{HOME}/ r,
> @{HOME}/** rwk,
>
> to the following file:
>
> /etc/apparmor.d/usr.sbin.mysqld
>
> This will allow MySQL to write to anywhere in a users home directory
> as well as the standard installation locations.
Would it be possible to have it allow only the more specific path MySQL
really needs to write to? Something like:
@{HOME}/*/camp*/mysql/**
Camps probably aren't a use case where being super strict with AppArmor
matters much, but if that's just as easy, maybe it'd be worth doing.
Jon
--
Jon Jensen
End Point Corporation
http://www.endpoint.com/
More information about the Camps-users
mailing list