felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2144 commits 5 branches 0 tags 16 MiB
Commit graph

346 commits

Author SHA1 Message Date
Alexandre Pujol
6a78b17d23
feat(profiles): general update. 2023-09-15 22:01:08 +01:00
Alexandre Pujol
6c397882ad
feat(dbus): update dbus rules. 2023-09-12 22:55:24 +01:00
Jose Maldonado aka Yukiteru
4aaa9379a1 Update ignore and better defaults for mpv 
Add access to GPU ids (amdgpu) for hwaccel in mpv, and
better defaults for user_config.

Update gitnore and debian/control
 2023-09-11 10:03:51 +01:00
Alexandre Pujol
3147f7d59a
feat(snap): do not confine snap. 
Curently ignored because of some incompatibilities with snap-confine.

snap-confine is more important to confine than snap itself.
 2023-09-10 12:07:35 +01:00
curiosityseeker
aaed7a25da
Various updates (#209) 2023-09-10 10:59:26 +00:00
nobody43
d414083113 Debian 12 Gnome DE 2023-09-10 11:58:13 +01:00
Jose Maldonado aka Yukiteru
0687c32df2 Add a Music Player Daemon profile 
This is a simple Music Player Daemon (mpd) profile. Tested in my
workstation (actually this is my setup for music) using Debian Stable.
 2023-09-10 11:00:27 +01:00
Alexandre Pujol
1fb2de0acd
feat(profiles): general update. 2023-09-05 23:36:46 +01:00
Alexandre Pujol
155ef6bef1
feat(profiles): general update. 2023-09-05 16:42:06 +01:00
Alexandre Pujol
b2fa7bacb8
feat(profiles): general update. 2023-09-01 22:50:43 +01:00
Alexandre Pujol
266db5d030
chore: cosmetic. 2023-08-27 15:50:51 +01:00
Alexandre Pujol
22e57b3620
feat(profiles): apply guideline on some profile. Update flags list. 2023-08-27 15:30:18 +01:00
Alexandre Pujol
ad3e5a5dcf
feat(profiles): add protonmail-bridge. 2023-08-27 15:17:36 +01:00
Alexandre Pujol
75ef5ef6ad
feat(profiles): general update. 2023-08-27 14:54:04 +01:00
Alexandre Pujol
ec3c5cd62e
feat(profiles): improve kde integration. 2023-08-27 14:32:08 +01:00
Alexandre Pujol
07cfbcd952
feat(profiles): modernize udev access. 2023-08-24 19:31:54 +01:00
Alexandre Pujol
96b8f96137
feat(profiles): general update. 2023-08-22 23:23:47 +01:00
Alexandre Pujol
360230b2a5
feat(profiles): general update. 2023-08-21 23:32:10 +01:00
Alexandre Pujol
5704d1ba20
feat(profiles): various profile fixes. 2023-08-19 14:01:50 +01:00
Alexandre Pujol
275d6b6e62
feat(profiles): replace old [0-9]* glob by @{int} 
Beware some [0-9]* glob are actually not proper @{int}.
 2023-08-18 17:09:53 +01:00
Alexandre Pujol
557d905543
Merge branch 'tunables' of https://github.com/nobody43/apparmor.d into nobody43-tunables 
* 'tunables' of https://github.com/nobody43/apparmor.d:
  dbus temp tails
  Update apparmor.d
  Update gdm-runtime-config
  more unrelated changes
  adjust date-time
  random tails
  rename to int, convert more profiles
  fixes
  tunables
 2023-08-17 20:01:53 +01:00
ShellCode
cc8210a1bd
Fix xdg user dirs (#186) 
* Rename XDG_*_HOME to XDG_*_DIR for consistent naming

* tunables/xdg-user-dirs.d/apparmor.d now includes 'apparmor.d.d' subfolder to permit user override
 2023-08-17 18:28:10 +00:00
Alexandre Pujol
5d47dfba95
feat(profiles): general update. 2023-08-17 18:43:56 +01:00
Alexandre Pujol
09943156bc
feat(profiles): add multipath profiles 
See #134

Signed-off-by: @cboltz
 2023-08-13 20:06:08 +01:00
Alexandre Pujol
1cac6715db
feat(profiles): general update. 2023-08-06 16:30:38 +02:00
Alexandre Pujol
cdc10fdb31
feat(profiles): general update. 
See #134
 2023-08-06 16:06:17 +02:00
curiosityseeker
4894d6a3c4
Adding /dev/tty[0-9]* and /dev/pts/[0-9]* to various profiles; update kded5 and reflector (#183) 
* Update update-mime-database

* Update btrfs

* Update update-grub

* Update pacman-hook-depmod

* Update pacman

* Update systemd-sysusers

* Update lscpu

* Update pacman-hook-systemd

* Update pacman-hook-perl

* Update pacman-hook-gtk

* Update needrestart-iucode-scan-versions

* Update reflector

* Update kded5
 2023-07-27 11:23:04 +00:00
ShellCode
0f9b7cb474
Fix #184 (#185) 
* Replace @{HOME}/.config with @{user_config_dirs}

* Replace @{HOME}/.cache with @{user_cache_dirs}

* Replace @{HOME}/.local/state with @{user_state_dirs}

* Add missing user_share_dirs to apparmor.d/tunables/home.d/apparmor.d

* Update docs/variables.md

* Replace @{HOME}/.local/share with @{user_share_dirs}

* Replace @{HOME}/.local/lib with @{user_lib_dirs}

* Revert "Add missing user_share_dirs to apparmor.d/tunables/home.d/apparmor.d"

This reverts commit 9525003098.
 2023-07-27 11:20:19 +00:00
curiosityseeker
714971911a
Update needrestart (#181) 2023-07-24 10:31:03 +00:00
Alexandre Pujol
d2a650f6c6
feat(profiles): improve dbus integration. 2023-07-20 21:00:41 +01:00
Alexandre Pujol
9c08b36182
feat(profiles): general update. 2023-07-18 22:28:30 +01:00
Alexandre Pujol
7c2c806ffa
refactor(profiles): use @{bin} and @{lib} in profiles (6) 2023-07-09 14:46:56 +01:00
curiosityseeker
0a468caff2 Revert adding the user-tmp abstraction 2023-06-13 17:53:14 +01:00
curiosityseeker
4deb8f135a Update mount 2023-06-13 17:53:14 +01:00
Alexandre Pujol
526dcc3252
feat(profiles): general update. 2023-05-07 20:34:00 +01:00
Alexandre Pujol
b45987ee8c
feat(profiles): improve some profiles related to kde (with xorg). 2023-04-30 21:41:23 +01:00
curiosityseeker
72227923c8 run-parts: 0anacron rPUx -> rix, and some other additions 
The rule
`/etc/cron.{hourly,daily,weekly,monthly}/0anacron            rPUx, `

causes the error:
`ALLOWED run-parts exec /etc/cron.hourly/0anacron info="no new privs" comm=run-parts requested_mask=x denied_mask=x class=file error=-1`
 2023-04-30 14:25:22 +01:00
curiosityseeker
2e4788c51e Update run-parts 
Correct include statement
 2023-04-28 17:20:31 +01:00
curiosityseeker
1cf1fc35e3 run-parts: include <nameservice-strict> 2023-04-28 17:20:31 +01:00
curiosityseeker
98badeb77d Update run-parts 2023-04-28 17:20:31 +01:00
curiosityseeker
0560bc18fb Update run-parts 2023-04-28 17:20:31 +01:00
Alexandre Pujol
ef687d7149
feat(profiles): general update. 2023-04-24 18:58:58 +01:00
Alexandre Pujol
d224aa4e6a
feat: various mount related fixes. 
See #152
 2023-04-24 12:27:05 +01:00
Alexandre Pujol
03b98ad7de
feat(pass): restrict secret dir path. 2023-04-16 20:46:17 +01:00
Alexandre Pujol
0e21955b0e
feat(profiles): general update. 2023-04-15 11:55:41 +01:00
Alexandre Pujol
5ea6ede589
feat(profile): general update. 2023-04-15 11:52:00 +01:00
Alexandre Pujol
a01c0ec989
feat(kde): better packagekit support. 2023-04-06 00:01:37 +01:00
curiosityseeker
1d4477e770 Update run-parts 2023-04-04 13:51:02 +01:00
Alexandre Pujol
1f7b192680
feat(gnome): improve first boot compatibility. 2023-04-03 18:26:42 +01:00
Alexandre Pujol
e927145edb
feat(profiles): general update. 2023-03-31 16:52:35 +01:00