update apparmor profiles

Signed-off-by: Alexandre Pujol <alexandre@pujol.io>

apparmor.d/profiles-a-f/atftpd

@@ -10,6 +10,8 @@ include <tunables/global>
 profile atftpd @{exec_path} {
   include <abstractions/base>
   include <abstractions/nameservice>
+  # For libwrap (TCP Wrapper) support
+  include <abstractions/hosts_access>
 
   # to run atftpd daemon as nobody/nogroup
   capability setgid,
@@ -21,8 +23,5 @@ profile atftpd @{exec_path} {
   /tftpboot/{,**} r,
   /srv/tftp/{,**} r,
 
-  # for libwrap (TCP Wrapper) support
-  /etc/hosts.{,allow,deny} r,
-
   include if exists <local/atftpd>
 }