Ubuntu
apparmor package

  1. Bug #357581
  2. Comment #2

Comment 2 for bug 357581

Revision history for this message
Steve Beattie (sbeattie) wrote : Re: [Bug 357581] [NEW] abstractions/smbpass missing entry for /var/lib/samba/*.ldb

On Wed, Apr 08, 2009 at 08:58:09AM -0000, Thierry Carrez wrote:
> Note that this seems to be the root cause of another issue, the
> corruption of secrets.tdb with "ltdb: tdb((null)): tdb_open_ex: could
> not open file /var/lib/samba/group_mapping.ldb: Permission denied"
> messages that ultimately results in pam_smbpass.so segfaults locking the
> user out. This issue started to be reported in intrepid (which shipped
> 3.2) and seems to only affect Ubuntu (and to a lesser extent Debian)
> systems - that would make sense if it's a cupsd/apparmor-induced thing.
> See bug 292791, bug 303458 (and specifically the duplicate bug 356851)
> for more details on that.

While it's a good thing that the apparmor abstraction was fixed, it
seems to me that there are still bugs here; whatever is corrupting
secrets.tdb should not be doing so if it does not have access to
/var/lib/samba/group_mapping.ldb, nor should pam_smbpass.so be segfaulting
if secrets.tdb is corrupt.

--
Steve Beattie
<email address hidden>
http://NxNW.org/~steve/