usr.sbin.lighttpd: minor updates, added Debian/Ubuntu integration.

The integration changes are taken from the patch at
apparmor-2.12/debian/patches/debian/add-debian-integration-to-lighttpd.patch
and are necessary so that lighttpd doesn't serve everything as
application/octet-stream.

profiles/apparmor/profiles/extras/usr.sbin.lighttpd

@@ -14,6 +14,7 @@
 /usr/sbin/lighttpd {
   #include <abstractions/base>
   #include <abstractions/nameservice>
+  #include <abstractions/perl>
   #include <abstractions/web-data>
 
   # needed to change max file descriptors
@@ -26,6 +27,8 @@
   capability setgid,
   capability setuid,
 
+  @{PROC}/loadavg r,
+
   /etc/lighttpd r,
   /etc/lighttpd/*.conf r,
   /etc/lighttpd/conf.d/*.conf r,
@@ -50,7 +53,17 @@
   /var/log/lighttpd/*.log rw,
   # include_shell
   /{usr/,}bin/bash mix,
+  /{usr/,}bin/dash mix,
   /{usr/,}bin/zsh mix,
   /{usr/,}bin/cat mix,
+
+  # Debian/Ubuntu integration in default installation
+  /etc/mime.types r,
+  /usr/share/lighttpd/ r,
+  /usr/share/lighttpd/*.pl mrix,
+  /etc/lighttpd/conf-available/ r,
+  /etc/lighttpd/conf-available/*.conf r,
+  /etc/lighttpd/conf-enabled/ r,
+  /etc/lighttpd/conf-enabled/*.conf r,
 }