felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): enable desktop user variable everywhere.

Browse source 
Also restrict access to these files.
This commit is contained in:
Alexandre Pujol 2024-03-19 11:26:57 +00:00
parent a370281e9b
commit 3787eb1745
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
26 changed files with 80 additions and 119 deletions
Download patch file Download diff file Expand all files Collapse all files

7
apparmor.d/groups/ubuntu/check-new-release-gtk
View file

@ -42,12 +42,13 @@ profile check-new-release-gtk @{exec_path} {
/etc/update-manager/{,**} r,
/var/lib/update-manager/{,**} rw,
/var/lib/gdm{3,}/greeter-dconf-defaults r,
/var/lib/gdm{3,}/.cache/update-manager-core/meta-release-lts rw,
/var/lib/gdm{3,}/.cache/update-manager-core/ rwk,
/var/cache/apt/ rw,
owner @{DESKTOP_HOME}/greeter-dconf-defaults r,
owner @{desktop_cache_dirs}/update-manager-core/ rwk,
owner @{desktop_cache_dirs}/update-manager-core/meta-release-lts rw,
owner @{user_cache_dirs}/update-manager-core/{,**} rw,
@{PROC}/@{pids}/mountinfo r,