felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2024-09-09 19:57:49 +01:00
parent a99fbaa0be
commit c7181ecadf
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
32 changed files with 152 additions and 158 deletions
Download patch file Download diff file Expand all files Collapse all files

19
apparmor.d/groups/freedesktop/accounts-daemon
View file

@ -21,7 +21,7 @@ profile accounts-daemon @{exec_path} flags=(attach_disconnected) {
capability sys_nice,
capability sys_ptrace,
ptrace (read) peer=unconfined,
ptrace read peer=unconfined,
#aa:dbus own bus=system name=org.freedesktop.Accounts
@ -58,24 +58,23 @@ profile accounts-daemon @{exec_path} flags=(attach_disconnected) {
/etc/shells r,
/etc/sysconfig/displaymanager r,
/var/log/wtmp r,
owner /var/lib/AccountsService/ r,
owner /var/lib/AccountsService/** rw,
@{HOME}/ r,
owner @{HOME}/.pam_environment r,
owner @{PROC}/@{pid}/fd/ r,
owner @{PROC}/@{pid}/loginuid rw,
@{PROC}/@{pids}/loginuid r,
@{PROC}/@{pids}/cmdline r,
owner @{tmp}/gnome-control-center-user-icon-@{rand6} rw,
@{PROC}/@{pid}/cmdline r,
@{PROC}/@{pid}/loginuid r,
@{PROC}/1/environ r,
@{PROC}/cmdline r,
@{PROC}/sys/kernel/osrelease r,
# wtmp.d ?
/var/log/wtmp r,
owner @{tmp}/gnome-control-center-user-icon-@{rand6} rw,
owner @{PROC}/@{pid}/fd/ r,
owner @{PROC}/@{pid}/loginuid rw,
include if exists <local/accounts-daemon>
}

4
apparmor.d/groups/freedesktop/xdg-screensaver
View file

@ -32,14 +32,14 @@ profile xdg-screensaver @{exec_path} {
@{bin}/xset rPx,
@{bin}/hostname rix,
/dev/dri/card@{int} rw,
owner @{HOME}/ r,
owner @{HOME}/.Xauthority r,
owner @{tmp}/xauth-@{int}-_[0-9] r,
owner @{run}/user/@{uid}/ r,
/dev/dri/card@{int} rw,
include if exists <local/xdg-screensaver>
}