feat(profile): general update.
This commit is contained in:
Alexandre Pujol
parent
bf973760fd
commit
319b976beb
47 changed files with 118 additions and 100 deletions
|
|
@ -29,6 +29,8 @@ profile gdm-session-worker @{exec_path} flags=(attach_disconnected) {
|
|||
capability sys_resource,
|
||||
capability sys_tty_config,
|
||||
|
||||
network netlink raw,
|
||||
|
||||
signal (receive) set=term peer=gdm,
|
||||
signal (receive) set=hup peer=@{systemd},
|
||||
signal (send) set=hup peer=at-spi*,
|
||||
|
|
@ -45,8 +47,6 @@ profile gdm-session-worker @{exec_path} flags=(attach_disconnected) {
|
|||
signal (send) set=hup peer=xwayland,
|
||||
signal (send) set=term peer=gdm-*-session,
|
||||
|
||||
network netlink raw,
|
||||
|
||||
dbus send bus=system path=/org/freedesktop/login1
|
||||
interface=org.freedesktop.login1.Manager
|
||||
member=*Session
|
||||
|
|
|
|||
|
|
@ -30,7 +30,7 @@ profile gnome-extensions-app @{exec_path} {
|
|||
|
||||
/usr/share/gnome-shell/org.gnome.Extensions* r,
|
||||
/usr/share/icu/@{int}.@{int}/*.dat r,
|
||||
/usr/share/terminfo/x/xterm-256color r,
|
||||
/usr/share/terminfo/** r,
|
||||
/usr/share/X11/xkb/{,**} r,
|
||||
|
||||
owner @{PROC}/@{pid}/mounts r,
|
||||
|
|
|
|||
|
|
@ -73,6 +73,9 @@ profile gnome-terminal-server @{exec_path} {
|
|||
/etc/pulse/client.conf.d/{,**} r,
|
||||
/etc/shells r,
|
||||
|
||||
/var/lib/flatpak/exports/share/icons/{,**} r,
|
||||
/var/lib/snapd/desktop/icons/{,**} r,
|
||||
|
||||
owner @{user_cache_dirs}/event-sound-cache.tdb.@{md5}.@{multiarch} rwk,
|
||||
|
||||
owner @{user_config_dirs}/*xdg-terminals.list* rw,
|
||||
|
|
@ -81,6 +84,8 @@ profile gnome-terminal-server @{exec_path} {
|
|||
owner @{run}/user/@{uid}/pulse/ r,
|
||||
owner @{run}/user/@{uid}/pulse/native rw,
|
||||
|
||||
owner /tmp/#@{int} rw,
|
||||
|
||||
@{PROC}/@{pids}/cmdline r,
|
||||
@{PROC}/@{pids}/cgroup r,
|
||||
|
||||
|
|
|
|||
|
|
@ -91,10 +91,10 @@ profile gsd-xsettings @{exec_path} {
|
|||
|
||||
owner @{user_cache_dirs}/mesa_shader_cache/index rw,
|
||||
|
||||
owner @{run}/user/@{uid}/.mutter-Xwaylandauth.@{rand6} r,
|
||||
owner @{run}/user/@{uid}/gdm/Xauthority r,
|
||||
@{run}/systemd/sessions/* r,
|
||||
@{run}/systemd/users/@{uid} r,
|
||||
owner @{run}/user/@{uid}/.mutter-Xwaylandauth.@{rand6} r,
|
||||
owner @{run}/user/@{uid}/gdm/Xauthority r,
|
||||
|
||||
owner @{PROC}/@{pid}/fd/ r,
|
||||
|
||||
|
|
@ -108,6 +108,7 @@ profile gsd-xsettings @{exec_path} {
|
|||
|
||||
/etc/X11/Xresources/ r,
|
||||
|
||||
include if exists <local/gsd-xsettings_run-parts>
|
||||
}
|
||||
|
||||
include if exists <local/gsd-xsettings>
|
||||
|
|
|
|||
|
|
@ -114,13 +114,13 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
|||
/usr/share/nautilus/{,**} r,
|
||||
/usr/share/poppler/{,**} r,
|
||||
/usr/share/sounds/freedesktop/stereo/*.oga r,
|
||||
/usr/share/terminfo/ r,
|
||||
/usr/share/terminfo/** r,
|
||||
/usr/share/thumbnailers/{,**} r,
|
||||
/usr/share/tracker*/{,**} r,
|
||||
|
||||
/etc/fstab r,
|
||||
|
||||
/var/cache/fontconfig/ r,
|
||||
/var/cache/fontconfig/ rw,
|
||||
/var/lib/snapd/desktop/icons/{,**} r,
|
||||
|
||||
# Full access to user's data
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue