felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update apparmor profiles

Browse source
This commit is contained in:
Mikhail Morfikov 2020-10-25 10:23:34 +01:00
parent 2cd06e74d6
commit f73da4a046
No known key found for this signature in database
GPG key ID: 32D9CB634796CCA1
134 changed files with 496 additions and 339 deletions
Download patch file Download diff file Expand all files Collapse all files

20
apparmor.d/udisksd
View file

@ -101,8 +101,8 @@ profile udisksd @{exec_path} {
/etc/crypttab r,
# To be able to operate on encryted devices
/{var/,}run/cryptsetup/ r,
/{var/,}run/cryptsetup/L* rwk,
@{run}/cryptsetup/ r,
@{run}/cryptsetup/L* rwk,
@{sys}/fs/ r,
@{sys}/bus/ r,
@ -115,19 +115,19 @@ profile udisksd @{exec_path} {
@{sys}/devices/virtual/bdi/**/read_ahead_kb r,
/{var/,}run/ r,
@{run}/ r,
# Info on mounted devices
/{var/,}run/mount/utab{,.*} rw,
/{var/,}run/mount/utab.lock rwk,
@{run}/mount/utab{,.*} rw,
@{run}/mount/utab.lock rwk,
/var/lib/udisks2/mounted-fs{,*} rw,
/{var/,}run/udisks2/ rw,
/{var/,}run/udisks2/loop{,.*} rw,
/{var/,}run/udisks2/unlocked-luks{,.*} rw,
/{var/,}run/udisks2/mounted-fs{,.*} rw,
@{run}/udisks2/ rw,
@{run}/udisks2/loop{,.*} rw,
@{run}/udisks2/unlocked-luks{,.*} rw,
@{run}/udisks2/mounted-fs{,.*} rw,
/{var/,}run/systemd/seats/seat[0-9]* r,
@{run}/systemd/seats/seat[0-9]* r,
profile systemd-escape {