felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update apparmor profiles

Browse source 
Signed-off-by: Alexandre Pujol <alexandre@pujol.io>
This commit is contained in:
Mikhail Morfikov 2021-12-08 12:59:46 +01:00 committed by Alexandre Pujol
parent 44aca3ba51
commit 3430e3df90
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
56 changed files with 146 additions and 45 deletions
Download patch file Download diff file Expand all files Collapse all files

8
apparmor.d/profiles-s-z/tune2fs
View file

@ -11,6 +11,8 @@ profile tune2fs @{exec_path} {
include <abstractions/base>
include <abstractions/disks-write>
include <abstractions/nameservice-strict>
include <abstractions/user-download-strict>
include <abstractions/private-files-strict>
network inet stream,
network inet6 stream,
@ -26,8 +28,10 @@ profile tune2fs @{exec_path} {
owner @{run}/blkid/blkid.tab.old rwl -> @{run}/blkid/blkid.tab,
# Image files
@{HOME}/** rw,
@{MOUNTS}/*/** rw,
@{HOME}/**.{iso,img,bin,mdf,nrg} rw,
@{MOUNTS}/*/**.{iso,img,bin,mdf,nrg} rw,
@{HOME}/**.{ISO,IMG,BIN,MDF,NRG} rw,
@{MOUNTS}/*/**.{ISO,IMG,BIN,MDF,NRG} rw,
include if exists <local/tune2fs>
}