I have created simialr bug in
https://bugs.launchpad.net/firefox/+bug/1609439 . It's confusing having
too (or more?) Firefoxes in launchpad...
My original issue was that usr.bin.firefox contains kinda..
misinformation, if I may, with rules like:
owner @{HOME}/Downloads/* rw,
while included user-files profile allows all home access (except some
denies of course), making this mentioned rule redundant.
Anyway, I agree that profile could be stricter, although question
arises, will I be able to suggest it for my not-that-savvy friends of
mine, if they would be able to download only to the Downloads, and
upload only from, let's say Home maybe (and Downloads and Pubic...)?
What a bout cat pics placed anywhere within home or mounted drive or
whatever? :) .
About user-files: there is /etc/apparmor.d/abstractions/private-files so
maybe it could be improved and used as main deny list, alternative to
/etc/apparmor.d/abstractions/ubuntu-browsers.d/user-files ?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1662501
Title:
since the apparmor profile is disabled by default, please make the
apparmor policy strict with option to make less strict
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/1662501/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
