felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): minor profile update.

Browse source 
See: #137
This commit is contained in:
Alexandre Pujol 2023-03-31 18:47:32 +01:00
parent ac75f2ee5c
commit fa4d065f52
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
7 changed files with 36 additions and 42 deletions
Download patch file Download diff file Expand all files Collapse all files

12
apparmor.d/profiles-g-l/login
View file

@ -17,6 +17,7 @@ profile login @{exec_path} flags=(attach_disconnected) {
capability audit_write,
capability chown,
capability dac_override,
capability dac_read_search,
capability fowner,
capability fsetid,
@ -29,7 +30,7 @@ profile login @{exec_path} flags=(attach_disconnected) {
network netlink raw,
signal (send) set=(hup,term),
signal (send) set=(hup term),
ptrace read,
@ -54,16 +55,17 @@ profile login @{exec_path} flags=(attach_disconnected) {
/var/log/btmp{,.[0-9]*} r,
owner @{user_cache_dirs}/motd.legal-displayed rw,
@{run}/dbus/system_bus_socket rw,
@{run}/faillock/* rwk,
@{run}/motd.dynamic{,.new} rw,
@{run}/systemd/sessions/*.ref rw,
owner @{PROC}/@{pid}/uid_map r,
owner @{PROC}/@{pid}/loginuid rw,
@{PROC}/@{pids}/cgroup r,
@{PROC}/1/limits r,
owner @{user_cache_dirs}/motd.legal-displayed rw,
owner @{PROC}/@{pid}/loginuid rw,
owner @{PROC}/@{pid}/uid_map r,
/dev/tty[0-9]* rw,