felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profiles): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2023-02-05 00:03:20 +00:00
parent 53d1b7a3fd
commit a402200dbe
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
11 changed files with 31 additions and 32 deletions
Download patch file Download diff file Expand all files Collapse all files

12
apparmor.d/groups/ssh/sshd
View file

@ -84,28 +84,28 @@ profile sshd @{exec_path} flags=(attach_disconnected) {
owner @{HOME}/@{XDG_SSH_DIR}/authorized_keys{,.*} r,
owner @{run}/sshd{,.init}.pid wl,
@{run}/faillock/[a-zA-z0-9]* rwk,
@{run}/motd.d/{,*} r,
@{run}/motd.dynamic rw,
@{run}/motd.dynamic.new rw,
@{run}/resolvconf/resolv.conf r,
@{run}/systemd/notify w,
@{run}/systemd/sessions/*.ref rw,
@{run}/faillock/[a-zA-z0-9]* rwk,
owner @{run}/sshd{,.init}.pid wl,
@{sys}/fs/cgroup/*/user/*/[0-9]*/ rw,
@{sys}/fs/cgroup/systemd/user.slice/user-@{uid}.slice/session-*.scope/ rw,
@{PROC}/@{pids}/fd/ r,
@{PROC}/1/environ r,
@{PROC}/cmdline r,
@{PROC}/sys/kernel/ngroups_max r,
owner @{PROC}/@{pid}/limits r,
owner @{PROC}/@{pid}/loginuid rw,
owner @{PROC}/@{pid}/mounts r,
owner @{PROC}/@{pid}/oom_adj rw,
owner @{PROC}/@{pid}/oom_score_adj rw,
owner @{PROC}/@{pid}/uid_map r,
@{PROC}/@{pids}/fd/ r,
@{PROC}/1/environ r,
@{PROC}/cmdline r,
@{PROC}/sys/kernel/ngroups_max r,
/dev/ptmx rw,