mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

apply suggestions from @georgiag

Browse source
This commit is contained in:
Giampaolo Fresi Roglia 2024-11-06 11:29:14 +01:00
parent b496786a18
commit 06dbaca1c8
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
profiles/apparmor.d/tnftp
View file

@ -64,7 +64,7 @@ profile tnftp /usr/bin/tnftp {
# here we are restricting execution to files in a limited set of # here we are restricting execution to files in a limited set of
# directories, for which we also deny write access. # directories, for which we also deny write access.
file Cx @{tnftp_rx}/* -> cmds, file Cx @{tnftp_rx}/* -> cmds,
deny file w @{tnftp_rx}/*, audit deny file w @{tnftp_rx}/*,
profile cmds { profile cmds {
include <abstractions/base> include <abstractions/base>
@ -77,7 +77,7 @@ profile tnftp /usr/bin/tnftp {
deny network, deny network,
file ixmr @{tnftp_rx}/*, file ixmr @{tnftp_rx}/*,
deny file w @{tnftp_rx}/*, audit deny file w @{tnftp_rx}/*,
# allow read on anything on @{HOME} not explicitly denied # allow read on anything on @{HOME} not explicitly denied
owner file r @{HOME}, owner file r @{HOME},