Simon Déziel has proposed merging
~sdeziel/apparmor-profiles/+git/apparmor-profiles:ssmtp-system-dead-letter into
apparmor-profiles:master.
Requested reviews:
AppArmor Developers (apparmor-dev)
For more details, see:
https://code.launchpad.net/~sdeziel/apparmor-profiles/+git/apparmor-profiles/+merge/309894
System users can have their home set to /var/lib/$name so having the
~/dead.letter file writable would be useful. Up until now I found myself
hardcoding a list of few system users into local/usr.sbin.ssmtp:
# backuppc
owner /var/lib/backuppc/dead.letter rw,
# logcheck
owner /var/lib/logcheck/dead.letter rw,
# nagios
owner /var/lib/nagios/dead.letter rw,
--
Your team AppArmor Developers is requested to review the proposed merge of
~sdeziel/apparmor-profiles/+git/apparmor-profiles:ssmtp-system-dead-letter into
apparmor-profiles:master.
diff --git a/ubuntu/12.04/usr.sbin.ssmtp b/ubuntu/12.04/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/12.04/usr.sbin.ssmtp
+++ b/ubuntu/12.04/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/14.04/usr.sbin.ssmtp b/ubuntu/14.04/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/14.04/usr.sbin.ssmtp
+++ b/ubuntu/14.04/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/14.10/usr.sbin.ssmtp b/ubuntu/14.10/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/14.10/usr.sbin.ssmtp
+++ b/ubuntu/14.10/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/15.04/usr.sbin.ssmtp b/ubuntu/15.04/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/15.04/usr.sbin.ssmtp
+++ b/ubuntu/15.04/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/15.10/usr.sbin.ssmtp b/ubuntu/15.10/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/15.10/usr.sbin.ssmtp
+++ b/ubuntu/15.10/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/16.04/usr.sbin.ssmtp b/ubuntu/16.04/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/16.04/usr.sbin.ssmtp
+++ b/ubuntu/16.04/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/16.10/usr.sbin.ssmtp b/ubuntu/16.10/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/16.10/usr.sbin.ssmtp
+++ b/ubuntu/16.10/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
diff --git a/ubuntu/17.04/usr.sbin.ssmtp b/ubuntu/17.04/usr.sbin.ssmtp
index 93318be..b97a2c6 100644
--- a/ubuntu/17.04/usr.sbin.ssmtp
+++ b/ubuntu/17.04/usr.sbin.ssmtp
@@ -11,4 +11,5 @@
/etc/ssmtp/* r,
owner @{HOME}/dead.letter rw,
+ owner /var/lib/*/dead.letter rw,
}
--
AppArmor mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/apparmor
