mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge Dovecot profile: Allow reading of /proc/sys/kernel/core_pattern

Browse source 
See <https://dovecot.org/bugreport.html>

(the link describes how Dovecot requires access to `core_pattern`)

MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/1331
Approved-by: Christian Boltz <apparmor@cboltz.de>
Merged-by: Christian Boltz <apparmor@cboltz.de>
This commit is contained in:
Christian Boltz 2024-11-21 20:51:13 +00:00
commit 2b45586fa9
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
profiles/apparmor.d/usr.sbin.dovecot
View file

@ -45,6 +45,7 @@ profile dovecot /usr/{bin,sbin}/dovecot flags=(attach_disconnected) {
/etc/SuSE-release r, /etc/SuSE-release r,
@{PROC}/@{pid}/mounts r, @{PROC}/@{pid}/mounts r,
@{PROC}/sys/fs/suid_dumpable r, @{PROC}/sys/fs/suid_dumpable r,
@{PROC}/sys/kernel/core_pattern r,
/usr/bin/doveconf rix, /usr/bin/doveconf rix,
/usr/lib*/dovecot/anvil mrPx, /usr/lib*/dovecot/anvil mrPx,
/usr/lib*/dovecot/auth mrPx, /usr/lib*/dovecot/auth mrPx,