Hi,
I'm building an apparmor profile for Logitech Media Server 7.8.0 and I noticed that the squeezeboxserver process is accessing /etc/passwd and /etc/nsswitch.conf (both read access).
Now, I know that /etc/passwd does not contain any passwords and it is world-readable by default anyway. I also know that some other common applications access the passwd file, too. But since "less is better", I'm still wondering why LMS needs to access these files.
Could read access to these files be safely denied or would it cause LMS to not work properly? (I haven't tried.)
Thanks and kind regards,
Timo
P.S.: When I'm finished building my apparmor profile, I'm happy to share it on the forum, if anyone is interested.
I'm building an apparmor profile for Logitech Media Server 7.8.0 and I noticed that the squeezeboxserver process is accessing /etc/passwd and /etc/nsswitch.conf (both read access).
Now, I know that /etc/passwd does not contain any passwords and it is world-readable by default anyway. I also know that some other common applications access the passwd file, too. But since "less is better", I'm still wondering why LMS needs to access these files.
Could read access to these files be safely denied or would it cause LMS to not work properly? (I haven't tried.)
Thanks and kind regards,
Timo
P.S.: When I'm finished building my apparmor profile, I'm happy to share it on the forum, if anyone is interested.