Commit Graph

207 Commits

Author SHA1 Message Date
Alexandre Pujol
4234c54f52
feat(profile): add keyboxd. 2024-01-27 19:43:12 +00:00
Alexandre Pujol
72ade58c98
feat(profile): add dbus-broker. 2024-01-27 19:39:54 +00:00
Alexandre Pujol
9a65da3605
feat(profile): apply profile guideline on secure-time-sync. 2024-01-24 21:03:49 +00:00
Alexandre Pujol
8f825473c6
feat(profile): apply profile guideline on sing-box. 2024-01-24 20:58:23 +00:00
Alexandre Pujol
46cb726834
feat(profile): add dbus-broker-launch. 2024-01-21 13:27:19 +00:00
Alexandre Pujol
243e4efb09
build: cleanup flags definition. 2024-01-21 11:57:26 +00:00
Alexandre Pujol
d2fc3c3325
fix(profile): merge flatpak-bwrap & flatpak-app.
See #264
2023-12-15 18:07:18 +00:00
Alexandre Pujol
b8fc5a96a5
fix(ci): my bad. 2023-12-10 15:48:32 +00:00
Alexandre Pujol
d2078fcb3a
feat(profile): general update. 2023-12-10 15:27:44 +00:00
Alexandre Pujol
41a7cb0f5c
fix: build deb in container. 2023-12-10 14:36:29 +00:00
Alexandre Pujol
5e93de2ec2
build: add support for whonix in docker script. 2023-12-10 13:23:11 +00:00
Alexandre Pujol
bc0e0c79bc
build: better whonix build. 2023-12-09 16:17:05 +00:00
Alexandre Pujol
386402ed70
feat(profile): add some new profiles. 2023-12-09 11:39:10 +00:00
Alexandre Pujol
a9c864fe60
feat(profile): initial support for whonix. 2023-12-09 11:25:38 +00:00
Alexandre Pujol
d81bce5559
feat(profile): general update. 2023-12-08 18:01:39 +00:00
Alexandre Pujol
0568ef0d45
feat(profile): add structure for some cups profile.
They are empty, and forced into complain mode.
2023-12-06 20:06:49 +00:00
Alexandre Pujol
c0bab81e45
feat(profile): add some network deps profile. 2023-12-06 20:03:28 +00:00
Alexandre Pujol
5af4d3c921
fix(profiles): modernise plank & kstart
- Still wip profile
- Should enable additional DE to boot
2023-11-29 22:29:41 +00:00
Alexandre Pujol
fade97486d
feat(profile): add udev child & low-memory profiles. 2023-11-27 19:32:50 +00:00
Alexandre Pujol
cdfa76924b
feat(profile): add dleyna profiles. 2023-11-27 19:27:44 +00:00
Alexandre Pujol
4c689dbad9
feat(profile): add gdm init profiles. 2023-11-27 19:25:34 +00:00
Alexandre Pujol
b8c2380da4
feat(profile): add epiphany providers. 2023-11-27 19:23:35 +00:00
Alexandre Pujol
aa1553388b
feat(flatpak): add flatpak integration.
- Add flatpak profile
- Add flatpak-bwrap subprofile: it manage the sandbox creation & has some larger access.
- Add flatpak-app, default profile for sandboxed app.

See Full system policy #252
2023-11-26 23:19:09 +00:00
Alexandre Pujol
e41779f576
feat(full): add default bwrap profiles.
On  full system policy, use the new bwrap profile (and bwrap-app) to confine sandboxed application.
It is not enabled by default as the sandbox profile is quite large.

Also integrate with the gnome app that use bwrap as sandbox manager.

Update other related profiles

See Full system policy #252
2023-11-26 23:12:35 +00:00
Alexandre Pujol
d8ff8c8cd6
feat(kde): add some kde profiles. 2023-11-26 23:07:02 +00:00
Alexandre Pujol
a49d83993a
feat(profile): add snapd-apparmor 2023-11-22 20:58:05 +00:00
Alexandre Pujol
07acb8043b
feat(profiles): rename all systemd generator. 2023-11-22 20:51:10 +00:00
Alexandre Pujol
9ab0745e2d
feat(full): add default fallback profile.
See #252
2023-11-22 20:12:20 +00:00
Alexandre Pujol
23be43ebd0
feat(full): improve how systemd handle services 2023-11-22 18:42:23 +00:00
Alexandre Pujol
e84750453c
fix: dpkg build. 2023-11-19 23:04:43 +00:00
Alexandre Pujol
908aba0385
feat(profiles): add some ubuntu specific profiles. 2023-11-19 21:42:31 +00:00
Alexandre Pujol
dd767f13c0
chore: update flags list. 2023-11-19 21:39:04 +00:00
Alexandre Pujol
59140f5411
feat(full): improve systemd profile.
See https://apparmor.pujol.io/development/structure/#full-system-policy
2023-11-19 21:31:57 +00:00
Alexandre Pujol
d64ef39bd1
build: minor fixes. 2023-11-19 21:04:58 +00:00
Alexandre Pujol
1b48e419f4
build(suse): add systemd-userdbd drop in file. 2023-11-19 15:38:36 +00:00
Alexandre Pujol
9e04743156
build: do not use rsync to synchronise file anymore. 2023-11-19 14:47:55 +00:00
Alexandre Pujol
a66debd2fb
build(dpkg): ignore libvirt profiles. 2023-11-13 22:22:40 +00:00
Alexandre Pujol
5760c0129c
build: add ignore file for whonix. 2023-11-09 20:53:30 +00:00
Alexandre Pujol
3ab5046d5d
build: ignore non suse profiles on other dists. 2023-11-09 20:53:03 +00:00
Alexandre Pujol
18da36238e
build: add some flags definition. 2023-11-09 20:51:34 +00:00
Alexandre Pujol
84ecf85c0b
feat(profiles): add dell cctk. 2023-10-26 22:40:21 +01:00
Alexandre Pujol
cdf601ca5c
build: minor improvements. 2023-10-21 21:51:23 +01:00
Alexandre Pujol
4276ede03c
feat(profile): rewrite update-ca-certificates. 2023-10-20 23:43:36 +01:00
Alexandre Pujol
958cc671b2
build: ignore chronyd profile on apt dist. 2023-10-08 13:57:23 +01:00
Alexandre Pujol
92bfdfa64a
build: do not install the man profile as it is provided by apparmor itself. 2023-10-01 14:27:48 +01:00
Alexandre Pujol
b122d9424f
feat(profiles): enforce some stable profiles. 2023-10-01 13:20:59 +01:00
Alexandre Pujol
ab0ee1a317
feat(profiles): add initial version of passim passimd. 2023-10-01 13:10:17 +01:00
Alexandre Pujol
2aace6bccb
feat(profile): improve kde integration. 2023-09-29 19:33:09 +01:00
Alexandre Pujol
4047921300
fix(build): update backport repo. 2023-09-20 23:08:17 +01:00
Alexandre Pujol
1eda792122
chore: cosmetic. 2023-09-20 19:01:52 +01:00