mirror of
https://github.com/roddhjav/apparmor.d.git
synced 2025-01-18 08:58:15 +01:00
feat(profiles): restrict path access in pacman.
This commit is contained in:
Alexandre Pujol
parent
ece6524886
commit
e4e54a26ef
1 changed files with 7 additions and 7 deletions
|
|
@ -104,13 +104,13 @@ profile pacman @{exec_path} {
|
|||
|
||||
# Install/update packages
|
||||
/ r,
|
||||
/*/ rwl,
|
||||
/boot/{,**} rwl,
|
||||
/etc/{,**} rwl,
|
||||
/opt/{,**} rwl,
|
||||
/srv/{,**} rwl,
|
||||
/usr/{,**} rwlk,
|
||||
/var/{,**} rwlk,
|
||||
/*/ rw,
|
||||
/boot/** rwl -> /boot/**,
|
||||
/etc/** rwl -> /etc/**,
|
||||
/opt/** rwl -> /opt/**,
|
||||
/srv/** rwl -> /srv/**,
|
||||
/usr/** rwlk -> /usr/**,
|
||||
/var/** rwlk -> /var/**,
|
||||
|
||||
@{PROC}/ r,
|
||||
@{run}/ r,
|
||||
|
|
|
|||
Loading…
Reference in a new issue