[ntp:questions] "pool" directive and 4.2.8p8

Kiss Gábor kissg at niif.hu
Mon Nov 14 16:04:45 UTC 2016


Dear Brian,

Thanks for your mail.
I started to write a looong answer ... then I somehow I checked the logs.

> > What did I wrong?

Oh Jeez!
Apparmor made me suck again. :-(

2016-11-14T16:45:10.717758+01:00 login kernel: [273248.423730] type=1400 audit(1479138310.715:659): apparmor="DENIED" operation="create" parent=1 profile="/usr/sbin/ntpd" pid=32274 comm="ntpd" family="unspec" sock_type="dgram" protocol=0

I wonder what is the forbidden operation that "pool" directive requires?
Strace shows dozens of like this:

32274 socket(PF_UNSPEC, SOCK_DGRAM, 0)  = -1 EACCES (Permission denied)

Investigation in progress...

Gabor


More information about the questions mailing list