[apparmor] [PATCH] two updates to private-files*

Mon, 13 May 2013 12:40:19 -0700 

These are quite self-explanatory:

0001-add-gnome-keyring-to-strict.patch: add @{HOME}/.gnome2/keyrings/**
to abstractions/private-files-strict

0002-add-upstart-to-private.patch: deny writes to upstart user sessions jobs

-- 
Jamie Strandboge                 http://www.ubuntu.com/

Author: Jamie Strandboge <[email protected]>
Description: add @{HOME}/.gnome2/keyrings/** to
 abstractions/private-files-strict
Forwarded: yes

Index: apparmor-2.8.0/profiles/apparmor.d/abstractions/private-files-strict
===================================================================
--- apparmor-2.8.0.orig/profiles/apparmor.d/abstractions/private-files-strict	2012-01-19 08:20:28.000000000 -0600
+++ apparmor-2.8.0/profiles/apparmor.d/abstractions/private-files-strict	2013-05-13 12:59:47.000000000 -0500
@@ -8,6 +8,7 @@
   audit deny @{HOME}/.gnupg/** mrwkl,
   audit deny @{HOME}/.ssh/** mrwkl,
   audit deny @{HOME}/.gnome2_private/** mrwkl,
+  audit deny @{HOME}/.gnome2/keyrings/** mrwkl,
   audit deny @{HOME}/.mozilla/** mrwkl,
   audit deny @{HOME}/.config/chromium/** mrwkl,
   audit deny @{HOME}/.{,mozilla-}thunderbird/** mrwkl,

Author: Jamie Strandboge <[email protected]>
Description: deny writes to upstart user sessions jobs
Forwarded: yes

Index: apparmor-2.8.0/profiles/apparmor.d/abstractions/private-files
===================================================================
--- apparmor-2.8.0.orig/profiles/apparmor.d/abstractions/private-files	2012-01-19 08:20:28.000000000 -0600
+++ apparmor-2.8.0/profiles/apparmor.d/abstractions/private-files	2013-05-13 13:03:31.000000000 -0500
@@ -15,6 +15,8 @@
   # special attention to (potentially) executable files
   audit deny @{HOME}/bin/** wl,
   audit deny @{HOME}/.config/autostart/** wl,
+  audit deny @{HOME}/.config/upstart/** wl,
+  audit deny @{HOME}/.init/** wl,
   audit deny @{HOME}/.kde{,4}/Autostart/** wl,
   audit deny @{HOME}/.kde{,4}/env/** wl,
   audit deny @{HOME}/.pki/nssdb/*.so{,.[0-9]*} wl,

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
AppArmor mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/apparmor

Reply via email to