mirror of
https://github.com/roddhjav/apparmor.d.git
synced 2025-01-18 17:08:09 +01:00
refractor(profile): clean some dbus rules.
This commit is contained in:
Alexandre Pujol
parent
e26302b155
commit
ed7585c3d0
4 changed files with 25 additions and 29 deletions
|
|
@ -22,7 +22,7 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
||||||
include <abstractions/trash>
|
include <abstractions/trash>
|
||||||
include <abstractions/vulkan>
|
include <abstractions/vulkan>
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/hostname[0-9]
|
dbus send bus=system path=/org/freedesktop/hostname1
|
||||||
interface=org.freedesktop.DBus.Properties
|
interface=org.freedesktop.DBus.Properties
|
||||||
member=GetAll,
|
member=GetAll,
|
||||||
|
|
||||||
|
|
@ -34,11 +34,9 @@ profile nautilus @{exec_path} flags=(attach_disconnected) {
|
||||||
member={IsSupported,List}
|
member={IsSupported,List}
|
||||||
peer=(name=:*),
|
peer=(name=:*),
|
||||||
|
|
||||||
dbus bind bus=session
|
dbus bind bus=session name=org.gnome.Nautilus,
|
||||||
name=org.gnome.Nautilus,
|
|
||||||
|
|
||||||
dbus bind bus=session
|
dbus bind bus=session name=org.freedesktop.FileManager1,
|
||||||
name=org.freedesktop.FileManager1,
|
|
||||||
|
|
||||||
@{exec_path} mr,
|
@{exec_path} mr,
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -22,33 +22,32 @@ profile ModemManager @{exec_path} flags=(attach_disconnected) {
|
||||||
member={RequestName,ReleaseName}
|
member={RequestName,ReleaseName}
|
||||||
peer=(name=org.freedesktop.DBus, label=dbus-daemon),
|
peer=(name=org.freedesktop.DBus, label=dbus-daemon),
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority
|
dbus send bus=system path=/org/freedesktop/PolicyKit1/Authority
|
||||||
interface=org.freedesktop.DBus.Properties
|
interface=org.freedesktop.DBus.Properties
|
||||||
member=GetAll,
|
member=GetAll,
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/login[0-9]
|
dbus send bus=system path=/org/freedesktop/login1
|
||||||
interface=org.freedesktop.login[0-9].Manager
|
interface=org.freedesktop.login1.Manager
|
||||||
member=Inhibit,
|
member=Inhibit,
|
||||||
|
|
||||||
dbus receive bus=system path=/org/freedesktop/login[0-9]
|
dbus receive bus=system path=/org/freedesktop/login1
|
||||||
interface=org.freedesktop.login[0-9].Manager
|
interface=org.freedesktop.login1.Manager
|
||||||
member={UserNew,SessionNew,PrepareForShutdown,SeatNew,UserRemoved,SessionRemoved,PrepareForSleep}
|
member={UserNew,SessionNew,PrepareForShutdown,SeatNew,UserRemoved,SessionRemoved,PrepareForSleep}
|
||||||
peer=(name=:*, label=systemd-logind),
|
peer=(name=:*, label=systemd-logind),
|
||||||
|
|
||||||
dbus receive bus=system path=/org/freedesktop/ModemManager[0-9]
|
dbus receive bus=system path=/org/freedesktop/ModemManager1
|
||||||
interface=org.freedesktop.DBus.ObjectManager
|
interface=org.freedesktop.DBus.ObjectManager
|
||||||
member=GetManagedObjects,
|
member=GetManagedObjects,
|
||||||
|
|
||||||
dbus receive bus=system path=/org/freedesktop/ModemManager[0-9]
|
dbus receive bus=system path=/org/freedesktop/ModemManager1
|
||||||
interface=org.freedesktop.DBus.Properties
|
interface=org.freedesktop.DBus.Properties
|
||||||
member=GetAll,
|
member=GetAll,
|
||||||
|
|
||||||
dbus receive bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority
|
dbus receive bus=system path=/org/freedesktop/PolicyKit1/Authority
|
||||||
interface=org.freedesktop.PolicyKit[0-9].Authority
|
interface=org.freedesktop.PolicyKit1.Authority
|
||||||
member=Changed,
|
member=Changed,
|
||||||
|
|
||||||
dbus bind bus=system
|
dbus bind bus=system name=org.freedesktop.ModemManager1,
|
||||||
name=org.freedesktop.ModemManager[0-9],
|
|
||||||
|
|
||||||
@{exec_path} mr,
|
@{exec_path} mr,
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -40,12 +40,12 @@ profile NetworkManager @{exec_path} flags=(attach_disconnected) {
|
||||||
dbus (send,receive) bus=system path=/org/freedesktop/NetworkManager{,/**}
|
dbus (send,receive) bus=system path=/org/freedesktop/NetworkManager{,/**}
|
||||||
interface=org.freedesktop.{DBus.Properties,DBus.Introspectable,NetworkManager*},
|
interface=org.freedesktop.{DBus.Properties,DBus.Introspectable,NetworkManager*},
|
||||||
|
|
||||||
dbus (send,receive) bus=system path=/org/freedesktop/PolicyKit[0-9]/Authority
|
dbus (send,receive) bus=system path=/org/freedesktop/PolicyKit1/Authority
|
||||||
interface=org.freedesktop.PolicyKit[0-9].Authority
|
interface=org.freedesktop.PolicyKit1.Authority
|
||||||
member={Changed,CheckAuthorization,CancelCheckAuthorization},
|
member={Changed,CheckAuthorization,CancelCheckAuthorization},
|
||||||
|
|
||||||
dbus (send,receive) bus=system path=/org/freedesktop/login[0-9]
|
dbus (send,receive) bus=system path=/org/freedesktop/login1
|
||||||
interface=org.freedesktop.login[0-9].Manager
|
interface=org.freedesktop.login1.Manager
|
||||||
member={SessionRemoved,UserNew,SessionNew,Inhibit,PrepareForShutdown,UserRemoved,PrepareForSleep}
|
member={SessionRemoved,UserNew,SessionNew,Inhibit,PrepareForShutdown,UserRemoved,PrepareForSleep}
|
||||||
peer=(name=:*, label=systemd-logind),
|
peer=(name=:*, label=systemd-logind),
|
||||||
|
|
||||||
|
|
@ -63,20 +63,20 @@ profile NetworkManager @{exec_path} flags=(attach_disconnected) {
|
||||||
member=Action
|
member=Action
|
||||||
peer=(name=org.freedesktop.nm_dispatcher),
|
peer=(name=org.freedesktop.nm_dispatcher),
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/ModemManager[0-9]
|
dbus send bus=system path=/org/freedesktop/ModemManager1
|
||||||
interface=org.freedesktop.DBus.ObjectManager
|
interface=org.freedesktop.DBus.ObjectManager
|
||||||
member=GetManagedObjects,
|
member=GetManagedObjects,
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/resolve[0-9]
|
dbus send bus=system path=/org/freedesktop/resolve1
|
||||||
interface=org.freedesktop.resolve[0-9].Manager
|
interface=org.freedesktop.resolve1.Manager
|
||||||
member={SetLink*,ResolveHostname},
|
member={SetLink*,ResolveHostname},
|
||||||
# org.freedesktop.resolve1
|
# org.freedesktop.resolve1
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/hostname[0-9]
|
dbus send bus=system path=/org/freedesktop/hostname1
|
||||||
interface=org.freedesktop.DBus.Properties
|
interface=org.freedesktop.DBus.Properties
|
||||||
member=GetAll,
|
member=GetAll,
|
||||||
|
|
||||||
dbus send bus=system path=/org/freedesktop/ModemManager[0-9]
|
dbus send bus=system path=/org/freedesktop/ModemManager1
|
||||||
interface=org.freedesktop.DBus.ObjectManager
|
interface=org.freedesktop.DBus.ObjectManager
|
||||||
member=GetManagedObjects,
|
member=GetManagedObjects,
|
||||||
|
|
||||||
|
|
@ -93,8 +93,7 @@ profile NetworkManager @{exec_path} flags=(attach_disconnected) {
|
||||||
interface=org.freedesktop.DBus.Properties
|
interface=org.freedesktop.DBus.Properties
|
||||||
peer=(name=:*),
|
peer=(name=:*),
|
||||||
|
|
||||||
dbus bind bus=system
|
dbus bind bus=system name=org.freedesktop.NetworkManager,
|
||||||
name=org.freedesktop.NetworkManager,
|
|
||||||
|
|
||||||
@{exec_path} mr,
|
@{exec_path} mr,
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue