mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-05 17:01:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
3155 commits 23 branches 109 tags 32 MiB
Commit graph

503 commits

Author SHA1 Message Date
Kees Cook
69ebfc4cda update python shared library paths for "pyshared" 2010-01-29 10:10:31 -08:00
Jamie Strandboge
d98c8ae8b5 add commented, but blank tunables/alias 
profiles/apparmor.d/tunables/global: include tunables/alias
parser/apparmor.d.pod: add alias rules and home.d. clean up
 HOMEDIRS
 2010-01-11 14:19:35 -06:00
Kees Cook
8b54df93dd make note of the trailing slash requirement in the home.d/site.local example 2010-01-05 15:43:32 -08:00
Jamie Strandboge
2d8246668c fix typo in profiles/apparmor.d/tunables/home.d/site.local 2010-01-05 16:16:16 -06:00
Jamie Strandboge
ebedab89e5 add local site configuration for HOMEDIRS tunable 
- add commented profiles/apparmor.d/tunables/home.d/site.local
- profiles/apparmor.d/tunables/home: include tunables/home.d
- profiles/Makefile: adjust for home.d sub-directory and install
  site.local
 2010-01-05 15:58:43 -06:00
Kees Cook
a0e8bf9661 update php5 abstraction, add more details to apache hat documentation, include a common apache2 abstraction for use with hats 2010-01-03 13:16:38 -08:00
Jamie Strandboge
45dc9d4d08 add /opt/google/chrome/google-chrome to ubuntu-browsers (TODO: abstract 
out to third-party-browsers)
 2009-12-04 11:37:10 -06:00
Kees Cook
d6a2f8258f remove profile complain flags -- it is up to a distribution to decide how to use a profile 2009-11-11 11:55:29 -08:00
Kees Cook
92b9063527 update KDE abstraction, from Ubuntu 2009-11-11 11:45:49 -08:00
Kees Cook
40e8c9f6e6 merge profiles from Ubuntu, including change_hat apache2 template 2009-11-11 11:42:30 -08:00
Kees Cook
da6c9246f5 clear remaining $Id$ tags, since bzr does not suppor them 2009-11-11 10:44:26 -08:00
Jamie Strandboge
84565d5407 abstractions/gnome: add /etc/gnome/defaults.list 2009-11-10 14:04:26 -06:00
Jamie Strandboge
6e42e18191 have dnsmasq in enforce mode 2009-11-04 14:30:43 -06:00
Jamie Strandboge
694c9916b9 pull in Ubuntu updates to profiles/apparmor.d 2009-11-04 14:25:42 -06:00
John Johansen
07ded00bd3 Update klogd profile with rejects reported in bnc#436849 2008-11-21 11:51:01 +00:00
John Johansen
f1348fb693 Add missing firefox profile from previous commit 2008-11-21 11:26:27 +00:00
John Johansen
f6d502017d Allow introspection in avahi bnc#431222 2008-11-07 05:52:01 +00:00
John Johansen
7d8f597c86 Update firefox profile as base for firefox 3 2008-11-05 16:00:39 +00:00
John Johansen
a77734a600 add reject for Novell bnc#425041 2008-11-05 14:53:00 +00:00
John Johansen
7e49a0004b Update ntpd to contain rejects for bnc#433368 and bnc#402693 2008-11-05 14:23:25 +00:00
John Johansen
aab94f31c0 Allow ntp to have capability dac_override 2008-11-05 14:10:08 +00:00
John Johansen
434bbfc409 Fix ntp chroot rejects Novell bnc#256291 2008-11-05 14:08:43 +00:00
John Johansen
148ed13b5e Fix reject for opensuse 11.1 listed in Novell bugzilla bnc#405317 2008-11-05 12:03:29 +00:00
John Johansen
f772109c4d Fix rejects reported in Novell bnc#436849 2008-11-05 11:57:34 +00:00
John Johansen
748e398c21 - various patches and cleanups from kees@ubuntu.com 2008-06-11 20:19:36 +00:00
John Johansen
f6824704c5 fix profile variables with no value to have empty string, as the parser doesn't support having no value yet 2008-05-07 18:38:53 +00:00
John Johansen
5eb6218708 add missing tunables file 2008-05-07 12:07:28 +00:00
John Johansen
3092aaa821 Various profile updates touching on bnc#255270, bnc#331444, bnc#307365 
bnc#230700
 2008-04-10 08:54:05 +00:00
John Johansen
932df992e1 add missing skype profile from previous commit 2008-02-26 12:29:36 +00:00
John Johansen
777ff460f8 update profiles for bugs that have been reported by various users 2008-02-19 10:35:19 +00:00
John Johansen
04acbd2bfb update profile for bugs that have been reported by various people 2008-02-19 10:32:28 +00:00
Dominic Reynolds
44a6fbadff Modify the cupsd profile to use ix transtions (rather than Px) for 
backend plugins.
 2007-09-17 02:00:47 +00:00
Seth Arnold
d66a9b2886 fixes for abstractions from Mathias Gug 2007-08-28 23:05:56 +00:00
Seth Arnold
c2f555ba0f abstractions fixes from Mathias Gug (Ubuntu) 2007-08-28 22:39:52 +00:00
Seth Arnold
8621cb193a some new abstractions from Mathias Gug 2007-08-27 23:49:51 +00:00
Seth Arnold
cbf2d633b2 Bug 295086 - abstractions/X lists /usr/X11R6 2007-08-23 23:26:49 +00:00
Seth Arnold
f9765ef6d6 Bug 288960 - nscd with nss_ldap and sasl/gss bind to ldap server failed 2007-08-23 23:23:06 +00:00
Seth Arnold
7486b2bbb0 Bug 288960 - nscd with nss_ldap and sasl/gss bind to ldap server failed 2007-08-23 23:22:06 +00:00
Seth Arnold
448fc73350 Bug 287579 - <abstractions/X> doesn't allow access to /usr/share/X11 and other xorg directories 2007-08-23 23:12:53 +00:00
Seth Arnold
f8fa7cf0d8 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:41 +00:00
Seth Arnold
1b92358fe1 Bug 241479 - Fix for usr.sbin.nscd profile 2007-08-23 22:49:11 +00:00
Steve Beattie
4cc2f981a3 [https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/132468] 
Dur, I put the wrong entry for resolvconf in the nameservice
abstraction, fixing.
 2007-08-21 21:53:27 +00:00
Seth Arnold
b2d95817fa seife reported nscd needs stream support too 2007-08-21 16:32:11 +00:00
Dominic Reynolds
c33bcaba91 Updated ping profile to include network inet raw 2007-08-20 00:28:20 +00:00
Dominic Reynolds
cd007f1162 Updates for cups, add inet|inet6 dgram|stream to nameservice abstraction 2007-08-17 21:46:56 +00:00
Seth Arnold
0e5d6bddd2 Bug 288470 - ntp profile rejects access to /var/lib/ntp/etc/localtime 2007-08-15 17:31:26 +00:00
Steve Beattie
18785e848d Fix to ntpd profile from Mathias Gug <mathiaz@ubuntu.com> of Ubuntu. 2007-08-14 18:51:00 +00:00
Steve Beattie
1f0169a5f9 Launchpad bug #132468: Nameservice abstraction should also include 
/var/run/resolvconf/resolv.conf:

  The Nameservice abstraction configuration file
  (/etc/apparmor.d/abstractions/nameservice) permits reads access to
  (amongst other paths) /etc/resolv.conf.

  However, on systems using resolvconf, this is a symbolic link to
  /etc/resolvconf/run/resolv.conf -- where /etc/resolvconf/run itself
  is a symlink to /var/run/resolvconf.
 2007-08-14 14:50:09 +00:00
Dominic Reynolds
fcfccdc1f7 Profile changes for the new network toggles and lock mediation. 2007-08-07 12:26:21 +00:00
Dominic Reynolds
fcbd2cafae Updates for network toggles and new profiles. 2007-08-06 15:28:24 +00:00