feat(profile): cleanup some rules already included in abs.

apparmor.d/profiles-a-f/aa-log

@@ -10,6 +10,7 @@ include <tunables/global>
 profile aa-log @{exec_path} {
   include <abstractions/base>
   include <abstractions/consoles>
+  include <abstractions/nameservice-strict>
 
   capability dac_read_search,
 
@@ -18,8 +19,6 @@ profile aa-log @{exec_path} {
   @{bin}/journalctl rix,
 
   /etc/machine-id r,
-  /etc/nsswitch.conf r,
-  /etc/passwd r,
   /var/lib/dbus/machine-id r,
 
   /var/log/audit/* r,
@@ -30,7 +29,6 @@ profile aa-log @{exec_path} {
 
   @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,
 
-  @{PROC}/sys/kernel/random/boot_id r,
   @{PROC}/sys/kernel/cap_last_cap r,
 
   /dev/tty@{int} rw,