From d5ee5c51cba17bea2647e068e90f610e820e6aff Mon Sep 17 00:00:00 2001
From: EricLin0509 <ericlin050914@gmail.com>
Date: Sat, 24 Aug 2024 19:35:21 +0800
Subject: [PATCH] Tighten the permissions of ufw

---
 apparmor.d/profiles-s-z/ufw | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/apparmor.d/profiles-s-z/ufw b/apparmor.d/profiles-s-z/ufw
index 63352e65..add5865e 100644
--- a/apparmor.d/profiles-s-z/ufw
+++ b/apparmor.d/profiles-s-z/ufw
@@ -1,5 +1,5 @@
 # apparmor.d - Full set of apparmor profiles
-# Copyright (C) 2024 EricLin
+# Copyright (C) 2024 EricLin <ericlin050914@gmail.com>
 # SPDX-License-Identifier: GPL-2.0-only
 
 abi <abi/3.0>,
@@ -44,8 +44,10 @@ profile ufw @{exec_path} {
     /etc/passwd r,
     /etc/services r,
 
-    /var/tmp/* rw,
-    /tmp/* rw,
+    /var/tmp/@{rand8} rw,
+    /var/tmp/tmp* rw,
+    /tmp/@{rand8} rw,
+    /tmp/tmp* rw,
 
     /dev/pts/[0-9]* rw,
     /dev/tty rw,