felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2024-06-23 11:25:17 +01:00
parent 2e127ace4b
commit ae71b323c2
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
29 changed files with 80 additions and 40 deletions
Download patch file Download diff file Expand all files Collapse all files

3
apparmor.d/profiles-s-z/smplayer
View file

@ -44,7 +44,7 @@ profile smplayer @{exec_path} {
@{bin}/pacmd rPx,
@{bin}/smtube rPx,
@{bin}/youtube-dl rPx,
@{bin}/yt-dlp rPx,
@{bin}/{y,}t-dlp rPx,
/usr/share/hwdata/pnp.ids r,
@ -87,5 +87,4 @@ profile smplayer @{exec_path} {
include if exists <local/smplayer>
}
# vim:syntax=apparmor

6
apparmor.d/profiles-s-z/top
View file

@ -11,8 +11,8 @@ include <tunables/global>
profile top @{exec_path} flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/consoles>
include <abstractions/wutmp>
include <abstractions/nameservice-strict>
include <abstractions/wutmp>
capability dac_read_search,
capability kill,
@ -36,16 +36,14 @@ profile top @{exec_path} flags=(attach_disconnected) {
@{run}/systemd/sessions/ r,
@{sys}/devices/system/node/ r,
@{sys}/devices/system/node/node@{int}/meminfo r,
@{sys}/devices/system/node/node@{int}/cpumap r,
@{sys}/devices/system/node/node@{int}/meminfo r,
@{PROC}/ r,
@{PROC}/@{pids}/cgroup r,
@{PROC}/@{pids}/cmdline r,
@{PROC}/@{pids}/environ r,
@{PROC}/@{pids}/oom_{,score_}adj r,
@{PROC}/@{pids}/oom_{,score_}adj r,
@{PROC}/@{pids}/oom_score r,
@{PROC}/@{pids}/oom_score r,
@{PROC}/@{pids}/stat r,
@{PROC}/@{pids}/statm r,

3
apparmor.d/profiles-s-z/wl-copy
View file

@ -7,8 +7,9 @@ abi <abi/3.0>,
include <tunables/global>
@{exec_path} = @{bin}/wl-{copy,paste}
profile wl-copy @{exec_path} {
profile wl-copy @{exec_path} flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/consoles>
@{exec_path} mr,

9
apparmor.d/profiles-s-z/yadifad
View file

@ -21,14 +21,15 @@ profile yadifad @{exec_path} {
@{exec_path} mr,
/etc/yadifa/yadifad.conf r,
/etc/yadifa/* r,
/var/log/yadifa/{,**} rw,
owner /var/lib/yadifa/{,**} rw,
owner /var/lib/yadifa/ rw,
owner /var/lib/yadifa/** rwk,
owner @{run}/yadifa/{,*} rw,
owner @{run}/yadifa/yadifad.pid rwk,
owner @{run}/yadifa/ rw,
owner @{run}/yadifa/** rwk,
include if exists <local/yadifad>
}