From 722ce7f78f2c82aa8d7655125f3e9b7bed004bc3 Mon Sep 17 00:00:00 2001
From: nobodysu <nobodysu@users.noreply.github.com>
Date: Sat, 28 May 2022 17:39:32 +0300
Subject: [PATCH] logrotate: add shred

---
 apparmor.d/profiles-g-l/logrotate | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/apparmor.d/profiles-g-l/logrotate b/apparmor.d/profiles-g-l/logrotate
index f2fb65f4..0fe18098 100644
--- a/apparmor.d/profiles-g-l/logrotate
+++ b/apparmor.d/profiles-g-l/logrotate
@@ -32,6 +32,7 @@ profile logrotate @{exec_path} flags=(attach_disconnected, complain) {
   /{usr/,}bin/{,ba,da}sh             rix,
   /{usr/,}bin/cat                    rix,
   /{usr/,}bin/grep                   rix,
+  /{usr/,}bin/shred                  rix,
   /{usr/,}bin/kill                   rix,
   /{usr/,}bin/ls                     rix,
   /{usr/,}bin/gzip                   rix,
@@ -49,6 +50,7 @@ profile logrotate @{exec_path} flags=(attach_disconnected, complain) {
   include <abstractions/wutmp>
   ptrace (read),
   capability sys_ptrace,
+#  capability net_admin,
   owner @{PROC}/@{pid}/stat r,
         @{PROC}/1/environ r,
         @{PROC}/1/sched r,