mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-04 08:24:42 +01:00
dovecot: restrict access by owner to the dovecot/config socket
Being able to read the config means accessing ssl_key data so should only be restricted to root https://wiki.dovecot.org/Services#config Signed-off-by: Simon Deziel <simon@sdeziel.info>
This commit is contained in:
Simon Deziel
parent
bc36daa264
commit
e3fd962e36
1 changed files with 1 additions and 1 deletions
|
|
@ -16,7 +16,7 @@
|
|||
# dovecot's master can send us signals
|
||||
signal receive peer=dovecot,
|
||||
|
||||
/{var/,}run/dovecot/config rw,
|
||||
owner /{var/,}run/dovecot/config rw,
|
||||
|
||||
# Include additions to the abstraction
|
||||
#include if exists <abstractions/dovecot-common.d>
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue