On Thu, Jun 04, 2015 at 03:56:43AM -0700, John Johansen wrote:
> The default change_onexec id is slightly wrong, it allows matching
> '/' as an executable but it really should be anything under /
>
> This results in the equality tests for change_profile failing as it
> is different than what specifying /** in a rule does.
>
> We could define rules need to be {/,}** to be equivalent but since
> / can not be an executable change the default value to match what
> /** is converted in to.
>
> Signed-off-by: John Johansen <[email protected]>Acked-by: Steve Beattie <[email protected]> -- Steve Beattie <[email protected]> http://NxNW.org/~steve/
signature.asc
Description: Digital signature
-- AppArmor mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
