felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add default path for plain use

Browse source 
firewall-applet: update profile

Update firewall-applet profile for support:

- Access to user config file (full access and lock)
- Access to cgroup info for pid process (read-only)
This commit is contained in:
valoq 2025-08-24 17:32:04 +02:00 committed by Jose Maldonado aka Yukiteru
parent 9a302147bd
commit feb1b78d47
No known key found for this signature in database
GPG key ID: 82C16CA549779887
2 changed files with 7 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
apparmor.d/groups/firewall/firewall-applet
View file

@ -21,6 +21,9 @@ profile firewall-applet @{exec_path} flags=(attach_disconnected) {
owner @{PROC}/@{pid}/cmdline r,
owner @{PROC}/@{pid}/mounts r,
owner @{PROC}/@{pid}/cgroup r,
owner @{user_config_dirs}/firewall/applet.conf rw,
include if exists <local/firewall-applet>
}

4
apparmor.d/profiles-g-l/grim
View file

@ -13,6 +13,10 @@ profile grim @{exec_path} {
@{exec_path} mr,
owner @{user_config_dirs}/user-dirs.dirs r,
owner @{HOME}/@{int8}_**_grim.png w,
owner /dev/shm/grim-@{rand6} rw,
include if exists <local/grim>