felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profiles): define more xdg variables.

Browse source
This commit is contained in:
Alexandre Pujol 2022-06-26 17:32:12 +01:00
parent b3a28da5e5
commit e087349662
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
35 changed files with 103 additions and 128 deletions
Download patch file Download diff file Expand all files Collapse all files

6
apparmor.d/profiles-a-f/aurpublish
View file

@ -21,9 +21,9 @@ profile aurpublish @{exec_path} {
/{usr/,}bin/rm rix,
/{usr/,}bin/wc rix,
owner @{HOME}/@{XDG_PROJECTS_DIR}/**/.git/COMMIT_EDITMSG rw,
owner @{HOME}/@{XDG_PROJECTS_DIR}/**/.SRCINFO rw,
owner @{HOME}/@{XDG_PROJECTS_DIR}/**/PKGBUILD r,
owner @{user_projects_dirs}/**/.git/COMMIT_EDITMSG rw,
owner @{user_projects_dirs}/**/.SRCINFO rw,
owner @{user_projects_dirs}/**/PKGBUILD r,
/dev/tty rw,

2
apparmor.d/profiles-a-f/browserpass
View file

@ -34,7 +34,7 @@ profile browserpass @{exec_path} flags=(attach_disconnected) {
deny network inet,
deny owner @{HOME}/.mozilla/firefox/[0-9a-z]*.*/features/*/*.xpi r,
deny owner @{HOME}/.mozilla/firefox/[0-9a-z]*.*/storage/default/{,**} rw,
deny owner @{HOME}/@{XDG_DOWNLOAD_DIR}/{,**} rw,
deny owner @{user_download_dirs}/{,**} rw,
deny owner @{run}/user/@{uid}/gnome-shell-disable-extensions w,
deny owner @{user_share_dirs}/gvfs-metadata/{,**} r,
deny /dev/dri/* rw,