logrotate: add shred

2025-02-20 08:55:34 +01:00 · 2022-05-28 17:39:32 +03:00 · 2022-05-28 17:39:32 +03:00 · 722ce7f78f
commit 722ce7f78f
parent 4a76a69632
1 changed files with 2 additions and 0 deletions
--- a/apparmor.d/profiles-g-l/logrotate
+++ b/apparmor.d/profiles-g-l/logrotate
@ -32,6 +32,7 @@ profile logrotate @{exec_path} flags=(attach_disconnected, complain) {
  /{usr/,}bin/{,ba,da}sh             rix,
  /{usr/,}bin/cat                    rix,
  /{usr/,}bin/grep                   rix,
+  /{usr/,}bin/shred                  rix,
  /{usr/,}bin/kill                   rix,
  /{usr/,}bin/ls                     rix,
  /{usr/,}bin/gzip                   rix,
@ -49,6 +50,7 @@ profile logrotate @{exec_path} flags=(attach_disconnected, complain) {
  include <abstractions/wutmp>
  ptrace (read),
  capability sys_ptrace,
+#  capability net_admin,
  owner @{PROC}/@{pid}/stat r,
        @{PROC}/1/environ r,
        @{PROC}/1/sched r,