no audit log entry for capability net_raw
Bug #1797764 reported by
Christian Boltz
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| AppArmor |
New
|
Undecided
|
Unassigned | ||
Bug Description
Denials for capability net_raw aren't logged in audit.log or dmesg.
Tested on openSUSE with kernel-
Reproducer:
- edit the ping profile, comment out "capability net_raw," and reload the profile
- run "ping cboltz.de" - it will error out with "ping: socket: Operation not permitted"
- check dmesg or audit.log - there isn't a DENIED line for capability net_raw
To post a comment you must log in.
