Hi. As we know, default Firefox profile contains something like this;
,-----[ Default profile allows (...) ]
| owner @{HOME}/ r,
| owner @{HOME}/Public/ r,
| owner @{HOME}/Public/* r,
| owner @{HOME}/Download/ r,
| owner @{HOME}/Download/* rw,
`-----
Default profile allows downloads to ~/Downloads and uploads from ~/Public,
right? So, what should I do or add to achieve this functionality. For now I
can upload and download files everywhere I want. I would like to achieve
that the profile will block (permission denied etc.) any attempts to save
files in another directory.
I've added a one option after owner$[HOME] mentioned above, but it did not
work;
,-----[ added option ]
| deny @{HOME}/ r,
`-----
Generally; I would like to achieve situation where Firefox/user can not
save file anywhere; just in Download directory.
Best regards.
--
AppArmor mailing list
AppArmor@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/apparmor
