mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-30 06:45:10 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

feat(profiles): restrict path access in pacman.

Browse source
This commit is contained in:
Alexandre Pujol 2022-10-06 20:50:41 +01:00
parent ece6524886
commit e4e54a26ef
Failed to generate hash of commit
1 changed files with 7 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
apparmor.d/groups/pacman/pacman
View file

@ -104,13 +104,13 @@ profile pacman @{exec_path} {
# Install/update packages # Install/update packages
/ r, / r,
/*/ rwl, /*/ rw,
/boot/{,**} rwl, /boot/** rwl -> /boot/**,
/etc/{,**} rwl, /etc/** rwl -> /etc/**,
/opt/{,**} rwl, /opt/** rwl -> /opt/**,
/srv/{,**} rwl, /srv/** rwl -> /srv/**,
/usr/{,**} rwlk, /usr/** rwlk -> /usr/**,
/var/{,**} rwlk, /var/** rwlk -> /var/**,
@{PROC}/ r, @{PROC}/ r,
@{run}/ r, @{run}/ r,